WatchGuard Takes Aim At Sophos With New Threat Detection And Response Solution


Printer-friendly version Email this CRN article

WatchGuard Technologies is bringing together its network and endpoint security portfolios with the launch of a new Threat Detection and Response solution, following on the heels of competitor Sophos.

The new Threat Detection and Response (TDR) solution, launched last week and announced on Tuesday, is an add-on subscription to the Seattle, Wash.–based company's flagship Firebox appliance as part of the company's Total Security Suite package. The cloud-based service adds threat detection capabilities on the endpoint, which connect back into the network for remediation.

WatchGuard has traditionally focused primarily on network security, but CTO Corey Nachreiner said the TDR launch shows the company recognizes the importance of a "holistic view" when it comes to security. He said companies need to embrace integrated network, endpoint, mobile and identity-based access solutions for more comprehensive security.

[Related: The 10 Coolest Network Security Products Of 2016]

"Traditional perimeter security is not enough," Nachreiner said. "Endpoint is what we were missing before and that is really the point of adding TDR to our product suite."

The TDR solution includes ThreatSync, which combines feeds from the company's Firebox appliances, endpoint sensors and threat intelligence feeds for threat detection and policy enforcement. It also includes a Host Ransomware Prevention module.

The launch comes at a time when other security vendors, including those also serving the small, medium and distributed enterprise markets, have pushed to offer both network and endpoint security as part of the same portfolio. Nachreiner said WatchGuard will differentiate itself by providing what he said is enterprise-grade technology through partnerships with enterprise security vendors, simplicity of management, UTM performance, threat visibility across both network and endpoint and allowing for the easy update of new services at no extra cost.

Sophos has also moved to unite its network and endpoint security lines, starting in November 2015 by bringing together intelligence from its next-generation firewall and UTM solutions with its next-generation endpoint technologies. It has since added to the number of products connected, including encryption. Nachreiner said WatchGuard's offering is different from Sophos because of the threat correlation it offers.

"We believe our correlation is much deeper than Sophos. And, by the way, we plan to make it even deeper," Nachreiner said.

The launch also comes as security threats facing small and medium businesses continue to accelerate, with SMBs facing tighter budgets and a shortage of staff but ultimately facing the same growing threats as their enterprise peers. Nachreiner said SMBs need the capabilities to detect attacks, but don't have the time to interact with multiple dashboards, leading them to look for a single set of solutions.

Printer-friendly version Email this CRN article