Extended Detection and Response or XDR takes an evolving approach to threat detection and response capabilities by bringing additional context to external threat intelligence and the internal business environment. It ingests, enriches, and contextualizes data to provide holistic protection against cyberattacks, unauthorized access, and misuse by breaking down traditional security silos across all data sources. In doing so, it extends the enhanced visibility and threat containment functionality traditionally provided by point solutions like NDR and EDR across the complete IT ecosystem.
eSentire and Cybersecurity Insiders conducted a comprehensive survey of 227 cybersecurity professionals to reveal the latest trends and challenges in managed XDR, why and how organizations invest in XDR services, and the security capabilities companies are prioritizing.
Key findings include:
• Contextualizing and correlating endpoint, network, cloud, identity, user behavior, and email data are the top challenges organizations are looking to address through XDR (64%). Since XDR also automatically blocks high fidelity threats, 59% of organizations are turning to XDR to move beyond contextualizing and correlating data across multiple signals to automate threat detection and initiate the remediation process.
• Over 70% of respondents agree that XDR is an important foundational platform that MDR providers and MSSPs should offer to enable effective multi-signal MDR services that remediate threats at speed.
• Organizations consider the lack of skilled security staff (52%) their top challenge, followed by detection of advanced threats (48%), and speed of detection and response (46%).
• Almost half of the survey respondents take between three to five days to detect and contain a cyber threat. An alarming majority of organizations (69%) report that their current managed services provider responds to threats on their behalf only up to 50% of the time.
We would like to thank eSentire for supporting this important industry research. We hope you find this report informative and helpful as you continue your efforts in protecting your organizations against evolving threats.