Open XDR , Security Operations , Video

XDR: Simplifying the Threat Detection and Response Process

SentinelOne's COO and Country Manager for India and SAARC Discuss the Future of XDR
Vats Srivatsan, COO, and Diwakar Dayal, managing director, India and SAARC, SentinelOne

Some organizations struggle with deciding whether to add an XDR framework to the existing threat detection and response layer, but a good analysis engine can simplify the process of processing data from multiple sources, according to SentinelOne's chief operating officer, Vats Srivatsan, and managing director for India and SAARC, Diwakar Dayal.

See Also: The Essential Guide to MITRE ATT&CK Round 4

Srivatsan says many organizations want to use XDR, but the jargon, new techniques and processes discourage them from pursuing it. The value of XDR is the ability to use data from sensors in endpoints, the cloud and identity management, he says. "Once you have the data from it, you need to be able to detect a threat or not because this industry is full of false positives, and the few things you miss can create a lot of damage. So, you need a good analysis engine."

XDR is just an extension that allows you to add other critical data feeds such as network applications. "We want to make it simple," Srivatsan says.

"It's always about the data," Dayal says. "The more you see, the better you get to detecting faster, detecting closer to the source of the problem. Using the power of artificial intelligence and machine learning that we have built to provide faster efficacy to providing results can be used primarily to ingest data from any other source."

In this video interview with Information Security Media Group at ISMG's Cybersecurity Summit held in Mumbai, Srivatsan and Dayal discuss:

  • How XDR enables data-driven decision-making;
  • Enhancing SOC operations with XDR;
  • Essential steps to building an XDR architecture.

Srivatsan leads SentinelOne's global expansion, growth and operational alignment. He has more than 30 years of experience across organizations including Palo Alto Networks, Google Cloud and Motorola Mobility.

Dayal is responsible for developing and executing EDR growth strategy for the India and SAARC region. He is a cybersecurity industry veteran with more than 23 years of experience in the India and Asia-Pacific region.


About the Author

Geetha Nandikotkur

Geetha Nandikotkur

Managing Editor & Conference Chair, Asia and Middle East, ISMG

Nandikotkur is an award-winning journalist with over 20 years of experience in newspapers, audiovisual media, magazines and research. She has an understanding of technology and business journalism and has moderated several roundtables and conferences, in addition to leading mentoring programs for the IT community. Prior to joining ISMG, Nandikotkur worked for 9.9 Media as a group editor for CIO & Leader, IT Next and CSO Forum.




Around the Network

Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing bankinfosecurity.asia, you agree to our use of cookies.