Login to your TrustKeeper Portal Account
Thank You. One of our sales specialists will be in touch shortly.
Speak with a Trustwave sales specialist to learn more.
Trustwave Managed Endpoint Detection & Response (EDR) service is the industry’s most comprehensive solution available, combining best-of-breed technology choices with a multi-tiered service delivery model which continuously monitors all endpoint activity in real-time to detect and respond to threats that evade traditional security defenses and threaten your business.
The increasingly sophisticated nature of rapidly evolving cyber threats has placed additional emphasis on the need for real-time visibility and control of endpoints. Today, cybercriminals are leveraging advanced attack toolsets and techniques that can evade most perimeter solutions and have outpaced the capabilities of many traditional endpoint security solutions as well. In response to this trend, security product vendors have created a whole new category of endpoint detection and response (EDR) solutions designed to address this need, but these new tools are often difficult to deploy, manage and monitor particularly at scale in large to mid-sized organizations. Trustwave has designed a fully Managed Endpoint Detection & Response service in order operationalize these new capabilities much more effectively on our customer's behalf, realizing the full potential of EDR.
The solution leverages our global SpiderLabs threat intelligence and behavioral analytics against a broad array of indicators of compromise (IOC)s to discover malicious activity and malware in much higher resolution than traditional endpoint protection suites provide. By analyzing the key behaviors of endpoint systems such as file and registry modifications combined with copies of executed binaries, file executions and/or network connections, a potential threat can be detected and mitigated before it can cause widespread damage.
Our Managed EDR service is delivered from a cloud based management system and supported by a three-tiered complement of threat analysts, incident response analysts, and Intel analysts. These security analysts work together collectively on your behalf to ensure that the service has up to the minute global threat intelligence from SpiderLabs, threat analysts who can recognize these evolving threats in your environment and incident response handlers who can work with you to eradicate these threats if and when they arise.
Regain control of your endpoints with real-time visibility as well as flexible control options which allow you to proactively detect attacks, rapidly identify malicious activity and terminate unauthorized behaviors before they negatively impact your operations. Our security analysts leverage real-time endpoint analytics to fully assess the scope of an attack and advise you on the spread of lateral movement within your network, pinpointing specific systems that may require remediation.
A light-weight agent is installed on the endpoint feeding detailed security context up to the Trustwave secure cloud and then advanced analytics are applied to uncover potential early IOCs. From there Trustwave security analysts take over and respond to any validated alerts, engaging the customer’s team when necessary for any extended on site remediation actions if needed.
The Managed EDR service is delivered from a cloud based management system and supported by Trustwave Global Threat Operations and SpiderLabs Research teams which includes threat analysts, incident response analysts, and Intel analysts. The key roles each of these members includes:
Responsible for global threat monitoring and maintaining of Trustwave specific threat feeds and Indicators of Compromise (IOCs) used for customer site monitoring and endpoint detection operations.
Responsible for customer specific threat monitoring and operation of the Managed EDR solution on the customer’s behalf, including potential attack notifications, escalations and execution of initial response operations via pre-approved policies.
Responsible for ongoing and extended response operations in coordination with the customer in the event of a widespread attack. Potential response operations may include:
Trustwave Managed Endpoint Detection & Response
Trustwave Managed Security Services
2016 Trustwave Global Security Report
2016 Security Pressures Report from Trustwave
IDC MarketScape: U.S. Emerging Managed Security Services 2016 Vendor Assessment