www . AmericanSecurityToday . com April 2021 - Edition 54
attack story .
XDR enables :
• Making more of existing security data , converting it into contextual information that security analysts can immediately use to respond to threats .
• Identifying hidden threats , using machine learning-based behavioral models applied across much larger security datasets .
• Identifying threats across multiple layers of the IT environment , including hybrid cloud and multi cloud infrastructure .
• Minimize alert fatigue by providing comprehensive data about suspected attacks , including a complete attack story .
• Providing detailed forensic data automatically , without requiring security analysts to “ dig ” into raw data to investigate an incident .
• Automatic response to any security incident by activating other security tools such as firewalls , IDS , EDR .
How is the XDR Stack Different ?
Let ’ s review the impact of XDR on the modern security stack .
Multiple Telemetry Sources
While traditional security products focus on a single point of attack or network element , XDR spans a broad lifecycle , from EDR and endpoint security to network
26