1. People: Hiring, training, and retaining qualified professionals during a growing global skills shortage.
2. Process: Developing, implementing, monitoring, and managing security operations to best practices.
3. Technology: Designing, building, configuring, and maintaining security infrastructure in an ever-changing technology landscape.
Managed Detection & Response (MDR) is a comprehensive solution offered by Difenda which addresses all 3 of these challenges across the entire organization. The MDR service allows organizations of all types to benefit from a world-class security operations program, previously only available to banks and other large enterprises, without the major capital investment, resource constraints, and operational expenditures of building and running it “in-house.”
Diftenda’s MDR service is comprised of several components which are designed to address several aspects of the NIST Cybersecurity Framework:
To detect legitimate security incidents, Difenda has built a multi-tenant event collection and analysis platform capable of delivering reliable and consistent service while staying cost-effective because of the economies of scale.
Difenda uses an analytics-driven security incident and event management (SIEM) platform as the engine for DifendaCloud. Difenda’s proprietary automation capabilities are powered by an enterprise-class automation platform. Together they form Difenda’s security orchestration, automation, and response (SOAR) solution, handling many operational tasks allowing Difenda’s C3 operatives to investigate and respond quickly to alerts.
The DifendaCloud also draws near real-time information from several open and proprietary threat intelligence feeds. This data supplements the system’s capability to recognize known-bad actors and suspiciously-behaving devices, users, and applications.
Threat hunting is the proactive process of systematically seeking out potential threats before an incident occurs, reducing dwell time, which greatly reduces the likelihood and impact of cyber incidents.
The Difenda Cyber Command Centre, an advanced modern security operations centre (SOC), is comprised of trained and experienced security personnel which are available 24/7/365 to manage incident response on behalf of Difenda’s customers.
Difenda’s MDR service goes beyond traditional MDR offerings, including an incident response retainer as part of the core service, which provides customers access to Difenda’s incident response service, with a priority response time SLA and a preferred hourly rate.