This November brings each the second anniversary and 1,000 buyer milestone for Sophos Community Detection and Response (NDR). Such phenomenal progress in two brief years displays the facility of Sophos NDR in addition to rising consciousness of the significance of community detection and response within the safety stack.
Adversaries go to nice lengths to keep away from being detected earlier than they will full their assault. However nevertheless good they’re at hiding their tracks, they all the time must cross the community. The excellent news is that with Sophos NDR adversaries merely can’t conceal – there isn’t a spot that the answer can’t shine a lightweight on.
Sophos NDR sits deep on the community, monitoring all community site visitors from managed and unmanaged units and detecting suspicious actions which will in any other case go unnoticed till it’s too late. Intensive response capabilities allow analysts – each within the Sophos MDR crew and the in-house analysts of our prospects and companions – to rapidly examine and neutralize threats.
Watch this brief video to see Sophos NDR in motion stopping a Cobalt Strike assault.
Combining AI and 5 real-time detection engines
Sophos NDR frequently displays your community site visitors, utilizing 5 real-time menace detection engines to establish indicators of malicious or suspicious exercise. Leveraging a mixture of AI-powered machine studying, superior analytics, and rule-based matching strategies, it identifies threats that usually go undetected till it’s too late, together with:
- Threats on unprotected units like point-of-sale programs, IoT and OT units, and legacy working programs
- Rogue property that adversaries exploit to launch assaults
- Insider threats equivalent to delicate knowledge uploads to an offsite location
- Zero-day assaults, and extra
Plus, when mixed with different safety telemetry, Sophos NDR allows menace analysts to color a extra full, correct image of your complete assault path and development, enabling a sooner, extra complete response.
Dive deep with the highly effective Investigation Console
The Sophos NDR Investigation Console deploys on the native community, offering wealthy evaluation instruments to speed up the identification of potential points and threats, together with the timing of occasions, the variety of occurrences, their severity, and their geo places. It additionally allows evaluation of software site visitors to establish undesirable or suspicious software exercise and potential knowledge loss incidents, in addition to evaluation of dangerous session knowledge to make sure the community is working effectively and securely.
Acknowledged as a Main Participant
Sophos is acknowledged as a Main Participant within the IDC MarketScape: Worldwide Community Detection and Response 2024 Vendor Evaluation (November 2024, IDC #US51752324). The IDC MarketScape famous that “a strong function that companies profit from when working inside a Sophos devoted ecosystem is Lively Risk Response.” The report additionally famous that “pricing is aggressive for midsize firms.”
Versatile deployment, most affect
Sophos NDR deploys as a digital equipment on VMware or Microsoft Hyper-V, within the cloud on AWS, or on a spread of licensed {hardware} home equipment.
Licensing is predicated on the variety of customers and servers on the community. There are not any restrictions or extra prices to deploy a number of NDR sensors and a single sensor can help as much as 40Gbps of community site visitors.
Sophos NDR is offered with each our managed detection and response service, Sophos MDR, and our self-managed Sophos XDR answer. Whether or not you wish to conduct community detection and response your self or have our crew do it for you, Sophos NDR might help.
Get began as we speak
To be taught extra about Sophos NDR, go to our web site or converse to your Sophos accomplice or consultant. Present Sophos prospects also can activate a free 30-day trial instantly inside their Sophos Central console.
