Darktrace launches AI-powered Managed Detection & Response service – SecurityBrief Asia

2 minutes, 55 seconds Read

Darktrace, a global leader in cybersecurity AI, has announced the inception of its new service, Darktrace Managed Detection & Response (MDR). This innovative service merges the company’s state-of-the-art detection and response capabilities with the proficiency of its global analyst team, aiming to bolster internal security teams through AI-powered threat containment and expert alert management across Darktrace environments.

The implementation of the MDR service is poised to help security teams redirect their efforts towards more strategic security initiatives, such as enhancing cyber resilience. According to the Darktrace State of AI Cybersecurity 2024 report, over 40% of security leaders prioritise enhancing and optimising technology and processes within the security operations centre (SOC) to augment defences against the increasing tide of AI-driven threats.

The newly launched service, which was first introduced in March 2024, aims to maximise the benefits of human-AI collaboration. It promises 24/7 managed detection and response, offering expanded hands-on analyst support across various domains, including network, cloud, operational technology (OT), endpoints, and software-as-a-service (SaaS) applications.

Darktrace’s SOC team will oversee customer environments, monitoring for high-priority alerts that could indicate an attack. The team will also conduct investigations to notify customers about potentially severe incidents and initiate preliminary triage with human involvement based on the AI’s actions. This process ensures that SOC carefully reviews the AI’s response measures and takes proactive steps to contain threats, which may involve extending or escalating response actions to allow internal teams to prepare effectively and gather necessary context for remediation efforts.

The global SOC team at Darktrace, which comprises over 100 cybersecurity analysts, will support the service. The SOC operates on a follow-the-sun model, with headquarters in the United Kingdom, United States, and Singapore, ensuring around-the-clock availability and support. The service boasts expansive coverage across network, cloud, OT, endpoints, or SaaS applications, making it one of the most comprehensive vendor MDR services available today.

Darktrace’s MDR service grants unlimited access to its analyst team, offering expert assistance during live threat investigations and routine operations. It also features semi-annual operational efficiency reports that provide consultancy insights and recommendations for optimising deployments and improving cybersecurity hygiene. Quarterly analyst MDR reviews ensure that deployments reach their full potential, with tailored advice on streamlining workflows, model optimisation, and custom use cases. Regular MDR service reports summarise all alerts raised and those resolved by Darktrace’s SOC for full transparency of the service.

Denise Walter, Chief Revenue Officer at Darktrace, commented on the rising sophistication and frequency of cyber threats and the need for organisations to enhance security outcomes without overloading their teams. She stated, “Our AI-powered MDR service gives our customers added peace of mind that a Darktrace human expert is monitoring their environment 24/7 to keep them protected. Darktrace Managed Detection & Response brings not only the power of our technology but the power of our people directly into our customers’ environments.”

Darktrace Managed Detection & Response is currently available to customers using Darktrace DETECT and RESPOND across Network, Cloud, OT, Endpoints, or SaaS applications. Partners can also resell the service, providing additional value to customers within their existing portfolios.

James Vintin, CEO at Grove Group, a global partner and distributor, expressed excitement about partnering with Darktrace to offer the MDR service. He highlighted the integration of Darktrace’s AI-driven threat containment with Grove’s proactive daily analysis and constant customer interaction, ensuring that potential threats are promptly identified and addressed. Vintin remarked, “Our partnership enhances our clients’ overall security posture and delivers the best of both worlds: immediate and long-term protection against evolving cyber threats.”

This post was originally published on 3rd party site mentioned in the title of this site

Similar Posts