From Threat Detection and Response to Threat Intelligence: What Should We Expect Next?
This IDC Perspective offers insights into the progression from threat detection and response solutions to the adoption of threat intelligence solutions. The report emphasizes the industry advancements made from endpoint detection and response (EDR) to extended detection and response (XDR) and key elements of XDR solutions and provides an outlook on managed detection and response (MDR) and managed security SPs (MSSPs). Additionally, this document highlights the significance of artificial intelligence/machine learning (AI/ML) algorithms in predicting threats based on historical telemetry and the proactive approach to threat response, resulting in the enhancement of threat intelligence solutions. "For enterprises looking to adopt or elevate their threat detection and response capabilities, initiating efforts to reduce dwell time typically involves starting with EDR; however, sophisticated attacks often encompass more than just endpoints, necessitating the adoption of XDR as the next evolutionary step. Technology buyers are advised to assess their requirements and then look at investing in a multitude of advancements happening with the advent of AI/ML models in the threat hunting and threat intelligence space as an advancement to detection and response (including XDR solutions)," says Sakshi Grover, research manager on the Future of Trust and Work, IDC India and Asia/Pacific.
Please Note: Extended description available upon request.