Security teams have deployed tools, implemented processes, and hired staff to respond to new threats as they’ve emerged, but they’re outnumbered and outgunned. But continually bolting new capabilities onto existing systems quickly creates a mess of poorly integrated tools that require a lot of scarce time, energy, and skill to use. Static processes that don’t adapt to rapidly changing trends and environments — such as cloud and remote work — quickly become stale and ineffective. And security analysts are charged with the near-impossible task of triaging a never-ending del-uge of security alerts, but they often receive limited training and equally limited tools. The combination of too many alerts and too little context causes security teams to lose visibility and control. Ultimately, the company becomes even more at risk as a result.
Extended detection and response (XDR) has emerged as a response to this complexity. XDR is a category of threat detection, investigation, and response solutions that work together across all threat vectors in a company’s infrastructure — including network, endpoint, cloud, and identity — rather than just one aspect of the infrastructure. By building integration directly into the architecture, XDR tools by design deliver threat insights and recommendations that optimize how security teams operate.
Các anh em bạn bè nhắn tới tấp hỏi nghỉ lễ có đi đâu chơi hơm? Đi nhậu hơm? Hơm, người-nông-dân ở nhà đọc-sách, làm-việc và học-bài thôi nha ahihi. Trước mắt là ráng đọc xong cuốn XDR for Dummies vừa được cập nhật mới nhất năm 2022 đã nè. Ai thích đọc cùng thì xem thêm thông tin ở đây nhé: https://bit.ly/3KCzzeh
Philip Hung Cao
TekFarmer Dharmakāya #tekfarmer
Cyber & Zero Trust Evangelist