Bitdefender discovers around 400 new threats each minute and validates around 30 billion threat queries daily, making it one of the industry’s most extensive, real-time views of the evolving threat landscape.
What role does XDR play in that and how can it help your organization?
Shelby Skrhak talks with Daniel Daraban, Group Product Manager at Bitdefender, about:
- How Bitdefender tracks threats
- The pros and cons of EDR (endpoint detection and response)
- The scope of XDR
- What sets Bitdefender apart
“Bitdefender provides cybersecurity solutions and advanced threat protection to hundreds of millions of endpoints worldwide,” Daniel says.
It is this OEM ecosystem that provides the necessary telemetry data to detect and respond to the myriad threats that crop up every day.
Bitdefender offers integrated detection and response across:
- Three major operating systems (Windows, Linux and Mac)
- Hybrid environments (public and private cloud and on-premises)
“We are leveraging data coming from endpoints, network servers, containers and cloud workloads, allowing extended EDR to centrally correlate both raw and security generated events in order to provide a root cause analysis as well as response,” Daniel says.
Endpoint detection and response (EDR)
The initial promise of EDR was that it would solve all of your cybersecurity issues. In reality, it took some time to mature into what it is today—a critical cog in an efficient security posture, especially in relation to targeted and complex attacks.
EDR’s main strength also happens to be its biggest limitation: It solely focuses on the endpoint.
Nevertheless, EDR is an excellent foundation for XDR.
Extended detection and response (XDR)
XDR widens the scope of EDR to go beyond endpoints to cover critical assets and services in the IT environment.
“The main objective,” Daniel says, “is to unify security-relevant endpoint detections with telemetry from other services that users interact with.”
In other words, it uses the proven abilities of EDR and extends it across the organization. This allows security analysts to spend less time investigating the threat and more time on other pressing matters.
What sets Bitdefender apart
Simply put, they listen to their customers.
The team excels at listening to customer feedback and identifying customer needs. They then translate that into a product that works for everyone.
In addition, extended EDR takes low-level, medium-level and high-level alerts into consideration and provides an extended root-level cause analysis in the form of a graph.
Therefore, the security analyst can see if a threat has occurred across multiple endpoints, for example. Then, if they need to drill down into more details, they can do that.
For more information, read "Want to get started with XDR? XEDR may be the best place to begin" or email Samantha Sisk.
To join the discussion, follow us on Twitter @IngramTechSol #B2BTechTalk
Listen to this episode and more like it by subscribing to B2B Tech Talk on Spotify, Apple Podcasts, or Stitcher. Or, tune in on our website.