Now Integrates Telemetry from Third-Party Endpoint, Firewall, Cloud, Identity, Email, and Other Security Solutions with Sophos Adaptive Cybersecurity Ecosystem for Improved Threat Detection and Response

OXFORD, U.K. — 十月 18, 2022 —

Sophos, a global leader in innovating and delivering cybersecurity as a service, today launched new third-party security technology compatibilities with Sophos Managed Detection and Response (MDR) to better detect and remediate attacks with speed and precision across diverse customer and operating environments. The industry-leading service with more than 12,000 customers now integrates telemetry from third-party endpoint, firewall, cloud, identity, email, and other security technologies as part of the Sophos Adaptive Cybersecurity Ecosystem.

“The complexity of modern operating environments and the velocity of cyberthreats make it increasingly difficult for most organizations to successfully manage detection and response on their own, and the need for always-on security operations has become an imperative,” said Joe Levy, chief technology and product officer at Sophos. “As with a shield, cyber-risk mitigation technology can aid in defense, yet unless you use that protection to react, the system will eventually fail; a determined attacker will eventually defeat technology alone. Our teams of experts can now detect and remediate threats across a broad range of environments, including complex, multi-vendor scenarios, before those threats turn into something more damaging, like ransomware or a wide scale data breach. MDR is often the difference between defense success and failure in real-world situations.”

Sophos MDR is now compatible with security telemetry from vendors such as Microsoft, CrowdStrike, Palo Alto Networks, Fortinet, Check Point, Rapid7, Amazon Web Services (AWS), Google, Okta, Darktrace, and many others. Telemetry can be automatically consolidated, correlated and prioritized with insights from the Sophos Adaptive Cybersecurity Ecosystem and the Sophos X-Ops threat intelligence unit. Sophos MDR’s expansive set of third-party security integrations is enabled by technology that Sophos acquired through SOC.OS in April 2022.

Leveraging bespoke data processing and correlation techniques across this broad set of telemetry, the Sophos MDR operations team is able to quickly understand the who, what, when, and how of an attack, and is capable of responding to threats across customers’ entire ecosystems within minutes. The Sophos MDR operations team can also use third-party vendor telemetry to conduct threat hunts and identify attacker behaviors that evaded detection from deployed toolsets.

“The approach that many cybersecurity technology providers have taken with their Extended Detection and Response, and their resulting MDR offerings, is to focus on integrating only their own proprietary hardware and software products, resulting in a closed and limited ecosystem offering. The challenge of this approach is that attributes of existing IT architectures may not be negotiable, given the realities of commercial contracts, technical debt or IT complexity,” said Frank Dickson, group vice president for IDC's Security and Trust research practice. “By expanding its MDR offering to include compatibility with third-party cybersecurity products, Sophos is delivering a more technology-agnostic managed service that truly meets customers where they are and the realities they are forced to embrace.”

Sophos MDR is customizable with different service tiers and threat response options. Customers can choose whether to have the Sophos MDR operations team execute full-scale incident response, provide collaborative assistance for confirmed threats, or deliver detailed alert notifications for their security operations teams to manage themselves.

“Sophos is the leading cybersecurity-as-a-service provider because of its focus on compatibility, accessibility and driving tangible business outcomes,” said Jeremy Weiss, executive technology strategist at CDW. “Unlike many MDR services in the market today, you don't have to make any compromises with Sophos – you can keep the cybersecurity tools you already have in place, choose what level of support you need, and what outcomes you want to achieve. Sophos is setting a new standard for how MDR should be delivered, and I won’t be surprised when other providers follow in its footsteps.”

Availability

Sophos MDR is available now through Sophos’ global channel of reseller partners and Managed Service Providers (MSPs). Integrations with select third-party security technologies will be generally available at no charge by year end. Customers can also purchase additional integration packs for other compatibility, with pricing based on the number of seats.

关于 Sophos

Sophos 是全球领先的先进安全解决方案提供商和创新者,全面安全解决方案涵盖托管式侦测与响应 (MDR) 和事件响应服务,以及广泛的端点、网络、电子邮件和云安全技术。作为最大的纯网络安全厂商之一,Sophos 为全球超过 600,000 家企业和超过 1 亿用户提供防御主动攻击对手、勒索软件、网络钓鱼、恶意软件等威胁的保护。Sophos 的服务和产品通过 Sophos Central 管理控制台连接,并得到公司内部的跨领域威胁情报部门 Sophos X-Ops 的支持。Sophos X-Ops 情报优化整个 Sophos Adaptive Cybersecurity Ecosystem 自适应网络安全生态体系,包括一个中央数据湖,为客户、合作伙伴、开发人员和其他网络安全与信息技术供应商提供一组丰富的开放 API。Sophos为需要完全托管的安全解决方案的组织提供网络安全即服务。客户还可以直接利用 Sophos 的安全运行平台管理其网络安全,或者采用混合方法,为内部团队补充 Sophos 服务(包括威胁追踪与修复)。Sophos 通过世界各地的经销商合作伙伴和托管服务供应商 (MSP) 销售。Sophos 总部位于英国牛津。如欲了解更多信息,请访问 www.sophos.com