Sophos MDR now also integrates telemetry from endpoint, firewall, cloud, identity, email and other third-party security solutions into the Sophos Adaptive Cybersecurity Ecosystem. Companies are free to choose which service they use.
Sophos today announced new compatibilities between third-party security technologies and its Sophos Managed Detection and Response (MDR) service. The goal is to detect and fix attacks in different customer and operating environments even faster and more precisely. Sophos MDR, currently serving more than 12.000 customers, integrates the telemetry of third-party endpoint, firewall, cloud, identity, email and other security technologies as part of the Sophos Adaptive Cybersecurity Ecosystem.
Integrated telemetry boosts performance
See detections quickly in the Threat Analysis Center (Image: Sophos).
"The complexity of modern environments and the speed of cyber threats make it increasingly difficult for most organizations to manage detection and response on their own," said Joe Levy, chief technology and product officer at Sophos. “Our teams of experts are now able to detect and remediate threats in a variety of environments – including complex multi-vendor scenarios. And that's before widespread damage can be done, such as activating ransomware or full-scale data breaches. In practice, MDR often makes the difference between success and failure of the defense.”
Compatibility with other solutions
By using bespoke data processing and correlation techniques on the wide range of telemetry data, the Sophos MDR team is able to quickly understand the who, what, when and how of an attack and respond to threats across customers' ecosystems within minutes . The team can also leverage third-party telemetry to track threats and identify attackers who evade detection through obfuscation techniques.
"Sophos is setting a new standard for MDR delivery and I wouldn't be surprised if other vendors follow suit."
Jeremy Weiss, Executive Technology Strategist at CDW
Sophos MDR is compatible with security telemetry from providers such as Microsoft, CrowdStrike, Palo Alto Networks, Fortinet, Check Point, Rapid7, Amazon Web Services (AWS), Google, Okta, Darktrace and many others. Telemetry data can be automatically consolidated, correlated and prioritized with insights from the Sophos Adaptive Cybersecurity Ecosystem and the Sophos X-Ops Threat Intelligence Unit. Sophos MDR's extensive security integrations with third parties are enabled by technologies Sophos acquired with SOC.OS in April 2022.
Customers can choose which service they use
Information in the thread down to the file level (Image: Sophos).
Sophos MDR is customizable with different service levels and threat response options. Customers can choose to have the Sophos MDR team conduct a comprehensive incident response, assist with confirmed threats, or provide detailed alert notifications that their security operations teams can manage and act on themselves.
Frank Dickson, group vice president of research for Security and Trust at IDC, says: “By expanding its MDR offering to include compatibility with third-party cybersecurity products, Sophos offers a technology-agnostic managed service that meets customers exactly where they need to be are and the realities they must contend with." Jeremy Weiss, Executive Technology Strategist at CDW adds: "Sophos is setting a new standard for the delivery of MDR and I wouldn't be surprised if other vendors follow suit."
More at Sophos.com
About Sophos More than 100 million users in 150 countries trust Sophos. We offer the best protection against complex IT threats and data loss. Our comprehensive security solutions are easy to deploy, use and manage. They offer the lowest total cost of ownership in the industry. Sophos offers award-winning encryption solutions, security solutions for endpoints, networks, mobile devices, email and the web. In addition, there is support from SophosLabs, our worldwide network of our own analysis centers. The Sophos headquarters are in Boston, USA and Oxford, UK.