What We Do
How We Do
Resources
Company
Partners
Get Started
Report

2023 Gartner® Market Guide for Managed Detection and Response Services

The latest Market Guide for Managed Detection and Response (MDR) Services from Gartner dives into the continued growth of the MDR industry and highlights the importance of human-led threat detection and response, context-driven insights, and increased demand for providers to actively disrupt and contain threats on customers’ behalf.

Some key findings and recommendations of the Managed Detection and Response Gartner Market Guide include:

  • Misnamed technology-centric offerings and vendor-delivered service wrappers (VDSW), that fail to deliver human-driven managed detection and response (MDR) services, are causing challenges for buyers looking to identify and select an outcome-driven provider.
  • Turnkey threat detection, investigation and response (TDIR) capabilities are a core requirement for buyers of MDR services who demand remotely delivered services deployed quickly and predictably.
  • MDR buyers must focus on the ability to provide context-driven insights that will directly impact their business objectives, as wide-scale collection of telemetry and automated analysis are insufficient when facing uncommon threats.
  • An increasing number of MDR customers demand that providers are able to remotely initiate measures for active containment or disruption of a threat, yet vendor autonomy still varies. Factors including: trust, geography and the security maturity of the consuming organization affect adoption.

As a security and risk management leader responsible for security operations, you should:

  • Use MDR services to obtain 24/7, remotely delivered, human-led security operations capabilities when there are no existing internal capabilities, or when the organization needs to accelerate or augment existing security operations capabilities.
  • Assess how the MDR provider’s containment approach and incident reporting can integrate with your organization and whether actions can be performed on your behalf to align with business requirements as well as compliance/legal policy/government regulation.
  • Attain the maximum benefit from MDR services by preparing response workflow processes and integrating existing ticket management systems to ensure a business-centric response.
  • Investigate whether the MDR provider’s service is able to align with your business-driven requirements and provide actionable findings that internal teams can successfully react to, rather than settling for regurgitated technology outputs with no added analysis.

1. Gartner, Market Guide for Managed Detection and Response Services, By Pete Shoard, Al Price, Mitchell Schneider, Craig Lawson, Andrew Davies, 14 February 2023
2. Gartner does not endorse any vendor, product or service depicted in its research publications, and does not advise technology users to select only those vendors with the highest ratings or other designation. Gartner research publications consist of the opinions of Gartner’s research organization and should not be construed as statements of fact. Gartner disclaims all warranties, express or implied, with respect to this research, including any warranties of merchantability or fitness for a particular purpose.
3. GARTNER is a registered trademark and service mark of Gartner, Inc. and/or its affiliates in the U.S. and internationally, and is used herein with permission. All rights reserved.

Download Now

2023 Gartner Market Guide for Managed Detection and Response Services logo used as a cover for a leading Cybersecurity Gartner market guide.

The latest Market Guide for Managed Detection and Response (MDR) Services from Gartner dives into the continued growth of the MDR industry and highlights the importance of human-led threat detection and response, context-driven insights, and increased demand for providers to actively disrupt and contain threats on customers’ behalf.

Some key findings and recommendations of the Managed Detection and Response Gartner Market Guide include:

  • Misnamed technology-centric offerings and vendor-delivered service wrappers (VDSW), that fail to deliver human-driven managed detection and response (MDR) services, are causing challenges for buyers looking to identify and select an outcome-driven provider.
  • Turnkey threat detection, investigation and response (TDIR) capabilities are a core requirement for buyers of MDR services who demand remotely delivered services deployed quickly and predictably.
  • MDR buyers must focus on the ability to provide context-driven insights that will directly impact their business objectives, as wide-scale collection of telemetry and automated analysis are insufficient when facing uncommon threats.
  • An increasing number of MDR customers demand that providers are able to remotely initiate measures for active containment or disruption of a threat, yet vendor autonomy still varies. Factors including: trust, geography and the security maturity of the consuming organization affect adoption.

As a security and risk management leader responsible for security operations, you should:

  • Use MDR services to obtain 24/7, remotely delivered, human-led security operations capabilities when there are no existing internal capabilities, or when the organization needs to accelerate or augment existing security operations capabilities.
  • Assess how the MDR provider’s containment approach and incident reporting can integrate with your organization and whether actions can be performed on your behalf to align with business requirements as well as compliance/legal policy/government regulation.
  • Attain the maximum benefit from MDR services by preparing response workflow processes and integrating existing ticket management systems to ensure a business-centric response.
  • Investigate whether the MDR provider’s service is able to align with your business-driven requirements and provide actionable findings that internal teams can successfully react to, rather than settling for regurgitated technology outputs with no added analysis.

1. Gartner, Market Guide for Managed Detection and Response Services, By Pete Shoard, Al Price, Mitchell Schneider, Craig Lawson, Andrew Davies, 14 February 2023
2. Gartner does not endorse any vendor, product or service depicted in its research publications, and does not advise technology users to select only those vendors with the highest ratings or other designation. Gartner research publications consist of the opinions of Gartner’s research organization and should not be construed as statements of fact. Gartner disclaims all warranties, express or implied, with respect to this research, including any warranties of merchantability or fitness for a particular purpose.
3. GARTNER is a registered trademark and service mark of Gartner, Inc. and/or its affiliates in the U.S. and internationally, and is used herein with permission. All rights reserved.

2000+ Organizations Choose eSentire

Emirates Hospitals Groups logo featured on a landing page for the 2023 Gartner MDR Magic Quadrant. Texas United Management logo featured on a landing page for the 2023 Gartner Magic Quadrant MDR. A logo of Quarles and Brady featured on a landing page for the Gartner Managed Security Services Magic Quadrant. A logo of Elemica featured on a landing page for the Gartner Managed Detection and Response Market Guide. eSentire’s positive MDR reviews further validate eSentire’s position as the Authority in MDR. A logo of THL featured on a landing page for the Gartner Managed Detection and Response Market Guide. A logo of CubeSmart featured on a landing page for the 2023 Gartner Managed Detection and Response Market Guide.

Get The Report