Intelligent CXO Issue 6 - Page 15

TECH TRENDS
We discussed the increased sophistication and volume of attacks and , to a large extent , this was fuelled by the forced ‘ work from home ’ setups . In the early days , most organisations rushed into working from home and the attack surface available to various attackers in the world increased significantly .
With endpoints leaving the relative safety of corporate networks and being scattered across employees ’ homes , security teams required more advanced threat detection capabilities and , more importantly , better visibility to avoid costly cyberbreaches .
EDR is the perfect instrument in this setup as it ’ s focused on the endpoint and the location of the device is less relevant .
How does EDR bridge the cyberskills gap ?
EDR is an interactive solution but to some degree security analysts are needed for an effective EDR ecosystem . By itself , EDR will not do too much good to an organisation – a high volume of alerts , fragmented visibility and false positives are increasing the pressure on security teams . This isn ’ t helping to cope with the skills gap .
So , when looking to adopt EDR , an organisation should consider a few things . First is the ability to detect complex threats , as well as
ease of use , accuracy , context information and guided response . But secondly , organisations should also look for built in automation capabilities .
To help customers reducing the challenges due to the cybersecurity skills gap , Bitdefender focused on providing an EDR that has proven industry leading detection capabilities but is also easy to use and accessible to a wide range of organisations .
We also developed an MDR service that moves all the weight of security operations to highly-skilled Bitdefender SOC team analysts .
Why is it so important that CISOs and their teams have access to highly detailed reports and analytics , and how does a good EDR solution enable this ?
I think it is hard to over-emphasise the importance of incident reporting and security analytics for security teams . Although there are quite a few reasons for having access to detailed reporting and analytics I will focus
IN THE EARLY DAYS , MOST ORGANISATIONS RUSHED INTO WORKING FROM HOME AND THE ATTACK SURFACE AVAILABLE TO VARIOUS ATTACKERS IN THE WORLD INCREASED SIGNIFICANTLY .
www . intelligentcxo . com
15