What is the difference between EDR and XDR?

Identity & Access Management (IAM)Data Privacy & Protection

745 views2 Upvotes2 Comments

Sort by:

Director of IT in Software4 years ago

XDR usually adds a layer of automation to EDR.
We had EDR and when looking to upgrade to XDR one of the main selling features was that it can integrate with our NG firewalls, so you can build a rule when something is being blocked in the EDR it will create a firewall rule as well. It aggregate the data and adds data analytics and threat intelligence

CIO in Manufacturing4 years ago

Based on the discussions I've had with multiple security companies, the X stands for "extended" and just means their own additional services they provide to customers. Rather than just the traditional monitoring, detection, and response, the additional services would include things like SOC 24x7, consulting, corporate incident response, threat hunting, etc..

Content you might like

Is it common practice at your organization for the general counsel’s office to notify authorities when a security incident occurs?

Yes70%

No26%

Other (comment below)3%

View Results

Are you seeing changes in the quality or speed of threat intelligence from sources you relied on in previous years? Can you share how you are being impacted so far by the uncertainty around public-private partnerships for cyber information sharing?

Have you seen an increase in attacks on your IoT or OT devices in the past year?

Significant increase5%

Moderate increase36%

Slight increase28%

No change19%

Slight decrease3%

Moderate decrease4%

Significant decrease1%

Not sure1%

View Results

How can security leaders in smaller organizations stay informed about emerging threats if they don’t have access to formal threat intelligence feeds?

How are you currently diversifying threat intelligence sources? Is your organization adopting any new strategies or platforms to maintain situational awareness?