Managed Detection and Response

Winner:

Sophos Managed Threat Response

Focused on threat hunting, detection and response, Sophos Managed Threat Response offers a fully managed and customizable approach to finding and stopping cyber threats—which is capable of meeting the needs of all customer sizes, including SMBs. Key additions to the offering over the past year have included Sophos Rapid Response, a remote incident response service that activates a 24/7 team to halt in-progress attacks—such as ransomware—and eliminate attackers from the network. The service entails a 45-day, fixed-fee engagement, and the service team can activate in as little as a few hours and triage most attacks within a 48-hour timespan. Leveraging both human analysis and machine-learning technology, Sophos Rapid Response ultimately offers the ability to quickly find and neutralize sophisticated threats.

Finalists:

eSentire Cyber Investigations Portfolio

With its recently launched Cyber Investigations Portfolio, eSentire offers remote threat suppression in just four hours, backed by a service level agreement guarantee. Services include emergency incident response, digital forensics investigations and security incident response planning.

Graylog Enterprise v4.0

Graylog Enterprise v4.0 offers centralized log management, reduced alert noise and key capabilities for security analysts—such as enabling analysts to create dashboards, search templates and reports. The platform ultimately helps with identification of breaches, proactive hunting for threats and investigation of known issues.

ReliaQuest GreyMatter

A recently added set of capabilities in GreyMatter, ReliaQuest’s open XDR-as-a-Service platform, allow security operations teams to improve detection, threat hunting and ease of management. The updates extend the ability for analysts to quickly see what their coverage is, while also enabling analysts to drill down into specific detections to understand how a rule was triggered.

Secureworks Taegis ManagedXDR

Launched earlier this year, Secureworks Taegis ManagedXDR brings together the company’s security operations know-how with advanced threat intelligence to provide threat detection and response across environments. The cloud-native solution covers endpoints, cloud environments and networks, helping to cut down on SOC costs while filling gaps in cybersecurity skills.

Stellar Cyber Open XDR Platform v4.0

With version 4.0 of its Open XDR Platform, Stellar Cyber improves efficiency and performance for security analysts by incorporating the loop interface of the XDR Kill Chain. This brings in a kill chain that is more realistic, providing a clear view of attack issues along with precise steps for remediation.