CAMBRIDGE, ONTARIO– November 8, 2018 – eSentire, Inc., the largest pure-play Managed Detection and Response (MDR) provider, today announced the availability of two new solutions – the Malicious Activity Assessment (MAA) and the Rapid Assist offering that will enable partners to help their clients both understand risk and act before the impact of a network threat, as well as immediately take action when a network infiltration event happens.
The MAA takes a proactive approach to uncovering business risks that goes beyond point-in-time snapshots, while the Rapid Assist offering augments in-house and partner capabilities when traditional incident response is not enough. eSentire channel partners consist of national and regional MSPs, and security VARs that deliver cybersecurity protection as a service to their clients.
According to research from the Ponemon Institute, only about half (52 percent) of organizations rate their ability as high or very high to quickly detect a cyber attack. Even once detected, taking action is also a major challenge: with only about half of organizations rating their ability as high or very high to contain (50 percent) or respond (54 percent) to a cyber attack.
“The old adage that ‘knowledge is power’ rings particularly true to those of us in the security sector who see the threat landscape continuing to intensify,” said Chris Braden, vice president of global channels and alliances, eSentire. “Our partners are constantly looking for ways to differentiate their services by improving the level of insight they can deliver to their customers. MAA and Rapid Assist allow them to do just that, by providing their customers with not only more actionable information but also immediate support when it’s needed most.”
When Prevention is Not Enough, MAA Enables Action Before Impact
MAA provides partners’ customers with 45 days of continuous network monitoring that illuminates defensive blind spots, and pinpoints areas in need of defensive refinements, allowing customer to address areas of greatest risk. Analysts from eSentire’s 24x7 Security Operations Center (SOC):
- Monitor – leveraging full packet capture, eSentire looks deep into network activity to expose known, unknown and evasive threats that may already be present
- Mitigate – isolating attackers before they accomplish their objectives
- Measure – providing weekly and executive summaries of SOC investigations and threats detected, as well as recommendations for adapting and improving an organization’s defenses
Rapid Assist Augments On-Site Incident Response When Speed Matters Most
Rapid Assist minimizes threat actor dwell time during an existing cybersecurity event by quickly filling the gaps in the incident response lifecycle among client organizations. When an attack happens Rapid Assist is available to:
- Determine the extent – collecting critical network and endpoint data, providing on-site and remove response teams with crucial information to speed forensic investigation
- Disrupt the threat – embedding containment capabilities via host isolation and network communication disruption
- Eliminate all traces – giving incident responders a comprehensive picture on how to eliminate all traces of the threat by capturing full network packets and endpoint telemetry
- Monitor for re-entry – ensuring the network and endpoints are not susceptible to new points of attack
Anchor Technologies, Inc., a cyber security consulting firm, has long seen the potential for eSentire to develop the Rapid Assist offering and are among the first partners to see its benefits within its client base. “When an attack hits, even the best laid security strategies prove inadequate to effectively collect critical data that speeds investigations and containment timeframes,” said Peter Dietrich, President, Anchor Technologies. “We raised this concern to eSentire and they were quick to work with us on a solution. Rapid Assist augments our team and those of our clients with a comprehensive picture on how to eliminate all traces of the threat – an invaluable tool when the clock is ticking, and we are under intense pressure to stop the threat and any others before business is disrupted.”
eSentire® is the largest pure-play Managed Detection and Response (MDR) service provider, keeping organizations safe from constantly evolving cyber attacks that technology alone cannot prevent. Its 24x7 Security Operations Center (SOC), staffed by elite security analysts, hunts, investigates, and responds in real-time to known and unknown threats before they become business disrupting events. Protecting more than $5.7 trillion AUM in the financial sector alone, eSentire absorbs the complexity of cybersecurity, delivering enterprise-grade protection and the ability to comply with growing regulatory requirements. For more information, visit www.esentire.com and follow @eSentire.