With Network Detection & Response (NDR), you get the visibility back and can detect cyber attacks at an early stage.
The network is an important component of cyber defence. Companies require a wide range of security mechanisms to detect and block cyber attacks. You therefore need a solution to analyse the network traffic and rapidly detect anomalies as well as potential vulnerabilities – for novel types of attack too.
Two service options are available. With the On-Premise version, the NDR appliance runs on your own infrastructure. With the Managed version, Swisscom operates the appliance in one of its own Swiss data centres.
Use AI-enabled detection to identify advanced persistent threats (APTs) and automate certain steps in the threat hunting process.
Ransomware/Trojan attacks go through various phases lasting from a few days to several months. Detect these attacks at an early stage and react before the attackers press the kill switch to encrypt your systems.
Inventories and blacklists are often not up to date, leading to internal and external threats from shadow IT. Detect the use of unwanted cloud services and unauthorised devices in the network.
You can only protect what you can see. The graph database and specialised visualisations make it easy to browse billions of raw data points.
Register your security guidelines in the NDR solution for efficient monitoring and implementation of your requirements.
As an analytical module, NDRaaS complements the Threat Detection & Response service offerings. Detected threats can then be further processed via the services for analysis and incident response.