Integrity360 is to resell Darktrace’s entire portfolio of services as part of its managed detection and response (MDR) offering, offering the entirety of the Darktrace ActiveAI Security Platform – including its AI-powered solutions: Prevent, Detect, Respond and Heal, with the Detect and Respond Network services also available as part of Integrity360’s MDR offering.
The managed service will see Detect and Respond telemetry data fed into Integrity360’s security operations centres (SOCs) and supplemented with support services. Integrity360 plans to add the Darktrace/OT offering integrated with MDR later in the year, consolidating Integrity360’s reputation as a leading MDR provider.
Darktrace Detect is the company’s flagship network detection and response (NDR) offering and gathers data from proprietary hardware, virtual sensors, and endpoint sensors as well as data from other endpoint and infrastructure security solutions. It uses Darktrace’s unique self-learning AI engine and can enhance its analytics by leveraging third party APIs.
Delivery of the Integrity360 Darktrace MDR Services involves a comprehensive assessment of the organisation’s architecture and appliances prior to Darktrace sensors being strategically placed across the network. The sensors continuously collect metadata which is fed into the Darktrace platform where the detection engine uses advanced behavioural modelling techniques powered by ML and AI-driven threat hunting algorithms. All telemetry is then analysed in a SOAR (security orchestration, automation and response) and alerts are passed to the Integrity360 SOC team who have complete visibility of the environment by virtue of the Darktrace Threat Visualizer console and can advise upon incident management and compliance reporting.
“Security teams are struggling to monitor increasingly complex environments and adhere to compliance frameworks amid the noise of alerts. NDR can facilitate rapid detection across these networks, giving real-time visibility into attack paths associated with ransomware, supply chain attacks, crypto-mining and insider threats, for instance. At the same time, autonomous response can help arrest the attack. But organisations don’t necessarily know what to do with that telemetry. That’s where MDR comes in, providing that extra service layer over the technology to meet investigative and compliance demands. It’s a value add that turns a useful solution into an indispensable one,” said Brian Martin, director of product Management, Integrity360 (pictured).
TechCentral Reporters
Subscribers 0
Fans 0
Followers 0
Followers