Download to read offline
Xcitium Managed Detection Respond Overview
- 1. Managed Detection & Response Don’tFear the Unknown. Contain It.
- 2. MANAGED DETECTION & RESPONSE ENDPOINT &NETWORK SOC RMM/EMM INTEL › Xcitium Advanced Protection › Endpoint Detection & Response Telemetry Collection › Network Traffic Visibility › 3rd Party Data Source Ingestion › Anomalous Behavior & Trends › Identify Root Cause C O M P L E T E V I S I B I L I T Y › Automate Forensic Collection › Block Activity in Real-Time › Isolate Endpoint from Network › Execute Custom Commands › Endpoint & Mobile Device Management › Remote Access › Patch Management R E A L - T I M E R E S P O N S E › 24/7/365 Eyes on Glass › Incident Response & Forensic Analysis › Pro-Active Threat Hunting Queries › Built-In SIEM for Log Ingestion I R & T H R E AT H U N T I N G › Xcitium Verdict Cloud › Integrate with Open-Source Feeds › Leverage Internal Intelligence › 300+ Behavioral Alerts › Detailed Kill-chain Reports › Emerging Threat Reporting T H R E AT I N T E L L I G E N C E
- 3. F o ll o w - t h e - S u n C o v e r a g e A l e r t F a t i g u e S o l v e d F u l l y M a n a g e d P r o a c t i v e T h r e a t H u n t i n g I n c i d e n t R e s p o n s e S e c u r i t y G u i d a n c e 24x7x365 team of highly skilled SOC analysts to conduct in-depth investigations and significantly reduce the amount of noise coming in . Comprehensive service for fully managing Xcitium technology & deployment. Receive high fidelity threat notifications from the SOC team and avoid being inundated with false positive alerts. Highly trained experts continuously hunting through generated logs & forensic artifacts looking for anomalous and suspicious activity across your organization. Xcitium’s Incident Response team is readily available to collaboratively work with your organization to resolve a cyber- attack & implement measures to prevent any future recurrences. Receive detailed reporting and guidance from our experts to further strengthen your overall security program. MANAGED DETECTION & RESPONSE
- 4. COMPLETE XDR Includes MDR plus Xcitium’s Network/Cloud Sensortechnology for 3rd party data consumption. XCITIUM COMPLETE PREVENTION ZeroDwell Containment Protect against execution of all Unknown Threats with patented isolation technology XCITIUM ESSENTIALS PROTECTION Advanced Endpoint Protection Protect your endpoints with Anti- Virus, HIPS, Firewall, NGAV, + ZeroDwell Containment XCITIUM ADVANCED VISIBILITY Endpoint Detection & Response Gain complete visibility across your endpoints and network to provide root cause storyline enrichment REMEDIATION Endpoint Manager Attack surface reduction with patch management and remote remediation MANAGED MDR Fully Managed Service providing People, Process, & Xcitium Technology. Includes Xcitium Advanced. XCITIUM MANAGED DON’T FEAR THE UNKNOWN. CONTAIN IT!
- 5. Network Sensor • NetworkLog Traffic Visibility (NTBA) • Intrusion Detection (IDS) • Additional Log Ingestion • Windows Event Logs • Firewall Logs • Linux Server Logs • Custom Data Sources Cloud Monitoring • O365 • Azure AD • AWS CloudTrail MANAGED DETECTION & RESPONSE X C I T I U M C O M P L E T E X D R X C I T I U M M A N A G E D M D R • 24/7/365 Eyes on Glass Alerting • Weekly/Monthly Reporting • Profile & Policy Management • Pro-Active Threat Hunting • Active Breach Containment • Incident Response / Forensics • Live Remediation Support • Monthly Meetings * Requires Xcitium Advanced * Includes Xcitium Managed MDR
- 6.
- 7.
- 8.
- 9.
- 10.
- 11.
- 12. 1 8 +Y E AR S I N C Y B E RS EC UR I TY T I M B A N D O S E V P , S O C S E R V I C E S C I S S P | C I S A | C A S S | C E H Xcitium MDR leverages the best technology, supported by a world- class team of highly trained Security Analysts, Threat Hunters, & Incident Responders for a truly enlightening experience for our customers. Our team is committed to working with you hand in hand to further mature & strengthen your organization’s security. “ ” C H I E F I N F O R M A T I O N S E C U R I T Y O F F I C E R • Risk Management & Compliance • Internal Security Monitoring & Incident Response • Cybersecurity Awareness & Training • Cybersecurity Delivery (MDR & DLP) • Product Architect for EDR Capabilities • MDR Sales Enablement • MDR Marketing / Webinars/ Blog / Tradeshows 6 Y E A R S D I R E C T O R O F I N C I D E N T R E S P O N S E • Advanced Digital Forensics • Incident Response Team - Forensics • Threat Intelligence & Research • Reverse Engineer Malware • Penetration Testing / Vulnerability Assessments • Red Team / Blue Cyber Assessments • Internal Audit / SOC Compliance 1 2 Y E A R S C O N F I D E N T I A L