Description

Secureworks Taegis ManagedXDR: 2,501 to 5,000 Endpoints

Comprehensive Managed Extended Detection and Response Solution

Secureworks Taegis ManagedXDR (SKU: TG-XDR-M-005000) is a robust managed security solution designed for organizations with 2,501 to 5,000 endpoints. This service combines the power of the Taegis XDR platform with Secureworks’ expert security operations to provide superior threat detection and response capabilities across a wide range of IT environments.

Key Features

• 24/7 threat detection, investigation, and response
• Support for endpoint, network, cloud, identity, and more
• Advanced detectors and applied threat intelligence
• SOAR and AI engine for automated responses
• 1 year of data retention included
• 90-second analyst access via chat
• Monthly threat hunting
• Unlimited response for covered assets
• Remote incident response services
• Regular security protection reviews

Comprehensive Coverage and Advanced Threat Detection

Taegis ManagedXDR offers support for a wide range of environments, including endpoints, networks, cloud (AWS, Azure, and O365), and identity systems. This broad coverage ensures that threats can be detected and responded to across the entire IT ecosystem. The service leverages advanced detectors, applied threat intelligence, and AI-powered analytics to identify sophisticated threats quickly.

The Taegis XDR platform, which forms the foundation of this managed service, processes over 47 billion events per day, with over 60% of those events coming from non-endpoint sources. This vast amount of data, combined with threat intelligence insights from thousands of incident response and penetration testing engagements conducted annually, provides a comprehensive view of the threat landscape.

Endpoint Protection and Telemetry

For endpoint protection, Taegis ManagedXDR combines the power of next-generation antivirus (NGAV) capabilities with rich endpoint telemetry from the Taegis EDR agent. This integration allows for the disruption of most threats that appear in endpoint environments while enriching threat investigations with additional endpoint context.

The Taegis agent supports a wide range of operating systems, including:

• Windows: Windows 10, Windows 11, Windows Server (2016, 2019, 2022)
• Linux: CentOS 7, Amazon Linux 2, Ubuntu 18.04, 20.04, RHEL 7, 8, 9
• macOS: Catalina 10.15, Big Sur 11, Monterey 12 (including M1)

This native OS support ensures easy deployment using existing OS tools and dedicated native OS telemetry data extraction.

AI-Powered Analytics and Threat Intelligence

Taegis ManagedXDR employs AI-powered detectors that leverage state-of-the-art machine learning algorithms and analytical techniques to continuously monitor your environment for malicious activity. These detectors recognize adversarial behavior early on, enabling rapid response to potential threats.

The service is further enhanced by comprehensive threat intelligence continuously produced by the Secureworks Counter Threat Unit. This team tracks over 175 global threat groups and maintains over 600,000 threat indicators and 20,000+ built-in Taegis XDR countermeasures. This wealth of intelligence is incorporated into the service’s detection and response capabilities, providing in-depth analysis of emerging threats and threat actor intent and behavior.

Rapid Response and Incident Management

When security incidents occur, Taegis ManagedXDR provides rapid response capabilities. The service includes 90-second analyst access via chat, ensuring that expert support is always available when needed. The Taegis XDR platform console, purposely developed and designed for collaboration, enables immediate and detailed investigation of security events.

The service incorporates over 70 proprietary automated playbooks to streamline incident response processes. These playbooks, combined with high-priority response action recommendations, help reduce Mean Time to Respond (MTTR) and minimise the cost of security incidents.

Proactive Threat Hunting and Security Reviews

Taegis ManagedXDR includes monthly threat hunting activities to proactively search for hidden threats in the environment. This proactive approach helps identify potential security risks before they can develop into full-blown incidents.

Additionally, the service provides regular security protection reviews. These reviews offer valuable insights into your organisation’s security posture and provide recommendations for improvements based on the latest threat intelligence and best practices.

Integration and Flexibility

As an open platform, Taegis XDR supports hundreds of integrations with endpoint, network, and cloud security tools. This extensibility allows organisations to maximise their existing security investments while enhancing their overall security posture. The platform offers extensive pre-built and easy-to-create custom integrations with third-party security tools, providing a unified view of the security infrastructure.

Compliance and Data Retention

Taegis ManagedXDR includes 1 year of data retention as standard, with options to extend retention for up to five years. This feature helps organisations meet various compliance requirements and provides historical data for long-term trend analysis and forensic investigations.