Is XDR (extended detection response) a buzzword or a real transformational shift?

Threat Intelligence & Incident ResponseSecurity Operations Center (SOC)
981 viewscircle icon4 Comments
Sort by:
CEO and Co-Founder in Software4 years ago

We have seen this before with McAfee and Intel—when that acquisition happened they were trying to create a buzz. And out of that we have seen the birth of two giants. I always say, if Webex did what it was supposed to do, Zoom would not exist. If McAfee did what it was supposed to do we wouldn’t have CrowdStrike or SentinelOne.

Lightbulb on2
Board Member, Advisor, Executive Coach in Software4 years ago

The whole XDR thing is just a marketing buzzword that everybody's embracing. It’s extended detection response—if I wasn't already doing that, then shame on me because it’s my job to make sure that I monitor what needs to be monitored. But that's a bit of a harsh feud and I know there are a bunch of XDR players. There are certainly technology components and extended service components that people are doing.

Lightbulb on2 circle icon2 Replies
no title4 years ago

I think any acronym is a buzzword, to be fair.

Lightbulb on2
no title4 years ago

Kind of like trust. A lot of people talk about it but nobody's fully implemented it.

Lightbulb on1

Content you might like

Any tips for evaluating/implementing solutions for application detection and response? What’s your experience been like with these tools so far?

With Gartner highlighting the urgency of post-quantum cryptography (PQC), I would like to know if there are other members of the group already involved in the discussion or in the planning to face the threat of attacks like 'harvest-now, decrypt-later'?

What is the most critical information you expect your cybersecurity team to deliver to you on a consistent basis?

Strategies to prevent ransomware from impacting data backup & recovery33%

What it will take to restore minimal operations after a compromise48%

How prepared the organization is to engage law enforcement in the event of an attack15%

How prepared it is to engage cybersecurity investigators2%

Other (share below)

View Results

Can anyone provide a recommendation on key questions to include in an RFP for Denied Party Screening tools?  Also, can you recommend any service providers?  We currently use E2Open (BluJay), and one of their solutions is coming EOL.

According to research from Imperva, the median duration of a network DDoS attack was 6.1 minutes in the first half of 2021. If you've experienced DDoS attacks this year, how long did they last for your organization on average?

0-1 minutes6%

2-4 minutes25%

5-8 minutes22%

9-15 minutes10%

15-30 minutes11%

31+minutes1%

We haven't experienced a DDoS attack this year.20%

View Results