Endpoint Detection and Response as a Managed Service: Challenges and Opportunities
While some security experts see endpoint detection and response suites, or EDRs, as the successor to endpoint protection platforms, or EPPs, implementing EDRs is time-consuming and requires specialized skills.
EDRs generate so much finely detailed technical data about every aspect of an endpoint that they require skilled technicians to be effective, which means they could prove impractical for organizations that have small IT teams.
Is managed services the way to go to leverage an EDR engine to its optimum potential? There already are MDR service offerings to address this gap. As investments into EDR continue, and this service segment grows in parallel, what are some finer points for the security practitioner to keep in mind?
This session features a discussion of:
- Implementing and running EDR in a managed model;
- How does detection, integration and response work in the MDR scenario?
- What are some challenges and pain points?
- What is the roadmap ahead for EDR/MDR investments?