Open XDR , Security Operations , Video
XDR: Simplifying the Threat Detection and Response Process
SentinelOne's COO and Country Manager for India and SAARC Discuss the Future of XDRSome organizations struggle with deciding whether to add an XDR framework to the existing threat detection and response layer, but a good analysis engine can simplify the process of processing data from multiple sources, according to SentinelOne's chief operating officer, Vats Srivatsan, and managing director for India and SAARC, Diwakar Dayal.
See Also: Revealing the Threat Landscape: 2024 Elastic Global Threat Report
Srivatsan says many organizations want to use XDR, but the jargon, new techniques and processes discourage them from pursuing it. The value of XDR is the ability to use data from sensors in endpoints, the cloud and identity management, he says. "Once you have the data from it, you need to be able to detect a threat or not because this industry is full of false positives, and the few things you miss can create a lot of damage. So, you need a good analysis engine."
XDR is just an extension that allows you to add other critical data feeds such as network applications. "We want to make it simple," Srivatsan says.
"It's always about the data," Dayal says. "The more you see, the better you get to detecting faster, detecting closer to the source of the problem. Using the power of artificial intelligence and machine learning that we have built to provide faster efficacy to providing results can be used primarily to ingest data from any other source."
In this video interview with Information Security Media Group at ISMG's Cybersecurity Summit held in Mumbai, Srivatsan and Dayal discuss:
- How XDR enables data-driven decision-making;
- Enhancing SOC operations with XDR;
- Essential steps to building an XDR architecture.
Srivatsan leads SentinelOne's global expansion, growth and operational alignment. He has more than 30 years of experience across organizations including Palo Alto Networks, Google Cloud and Motorola Mobility.
Dayal is responsible for developing and executing EDR growth strategy for the India and SAARC region. He is a cybersecurity industry veteran with more than 23 years of experience in the India and Asia-Pacific region.