TRENDING:

Endpoint Detection & Response (EDR) , Next-Generation Technologies & Secure Development , Open XDR

XDR: Unifying Incident, Detection, Response and Remediation

Gartner's Bhajanka on Why XDR is Gaining Traction Suparna Goswami (gsuparna) • December 4, 2020    
Prateek Bhajanka, senior principal analyst at Gartner

By consolidating data from different sources XDR positions itself as an attack-centric tool and not a role-centric tool, which Prateek Bhajanka, senior principal analyst at Gartner, says helps it to detect attacks from anywhere.

See Also: Webinar | How the SASE Architecture Enables Remote Work

“One of the biggest differentiators of XDR is the refreshed architecture that it is offering. Rather than having an email application integrated with EDR, and EDR being integrated with a secure gateway and having one to one integration across tools, we are now creating a central data lake to which data will be submitted from all these sensors that just collect information from the endpoints, and devices,” says Bhajanka.

Bhajanka also discusses how XDR fills the gaps by SIEM and why the two must not be confused. “The initial confusion around XDR was if it was very similar to SIEM. If you look at the wide variety of use cases that a SIEM solves, that is where getting the required insights from SIEM could be difficult and it may not be as effective and efficient as XDR would be able to give.”

In this video interview with Information Security Media Group, Bhajanka also discusses:

  • How XDR is different from SIEM;
  • Why XDR is gaining relevance in the cybersecurity world;
  • The perceived challenges of XDR.

Bhajanka is a senior principal analyst for Gartner research, focusing on security and risk management. Bhajanka's areas of research include endpoint protection platforms/endpoint detection and response (EPP/EDR), malware and ransomware prevention.

Previous
New Zealand's Refreshed Privacy Act Takes Effect
Next
Fresh macOS Backdoor Variant Linked to Vietnamese Hackers

About the Author

Suparna Goswami

Suparna Goswami

Associate Editor, ISMG

Goswami has more than 10 years of experience in the field of journalism. She has covered a variety of beats including global macro economy, fintech, startups and other business trends. Before joining ISMG, she contributed for Forbes Asia, where she wrote about the Indian startup ecosystem. She has also worked with UK-based International Finance Magazine and leading Indian newspapers, such as DNA and Times of India.



Around the Network

Showing Evidence of 'Recognized Security Practices'
Showing Evidence of 'Recognized Security Practices'
How 2U Inc. Is Fortifying Its Systems and Solutions Designs
How 2U Inc. Is Fortifying Its Systems and Solutions Designs
Craig Box of ARMO on Kubernetes and Complexity
Craig Box of ARMO on Kubernetes and Complexity
Are We Doomed? Not If We Focus on Cyber Resilience
Are We Doomed? Not If We Focus on Cyber Resilience
Protecting the Hidden Layer in Neural Networks
Protecting the Hidden Layer in Neural Networks
The Persisting Risks Posed by Legacy Medical Devices
The Persisting Risks Posed by Legacy Medical Devices
David Derigiotis on the Complex World of Cyber Insurance
David Derigiotis on the Complex World of Cyber Insurance
Whistleblowing Brings Visibility to the Role of CISOs
Whistleblowing Brings Visibility to the Role of CISOs
Organization-Wide Passwordless Orchestration
Organization-Wide Passwordless Orchestration
Securing the SaaS Layer
Securing the SaaS Layer

Continue »

Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing bankinfosecurity.asia, you agree to our use of cookies.