Overview

Automate and optimize your organization’s threat detection capabilities

Our Threat Detection Services identify threats by analyzing vast amounts of raw log data from your networks, endpoints, cloud and secure access service edge (SASE). The large number of false-positives typically generated gets separated from the true-positives and suspicious activity is identified. By using threat intelligence, machine learning, advanced analytics and threat behavior modelling, we can accurately detect both known and unknown threats that evade standard detection techniques. Our Threat Detection Services deliver the strong, resilient security posture needed to protect your valuable information assets against dynamic security threats.

Visit our SOC to learn more about the team that delivers the service 
Learn more
Teal dot and line pattern Green dot and line pattern

Threat Detection Services options

Threat Detection Enhanced:
  • Deep integration with next-generation firewalls, endpoint detection, sandboxes and secure access service edge (SASE) with multiple supported vendors and technologies. This enables the collection of evidence data and contextual information well beyond standard syslog outputs.
  • Event-driven threat hunting by security analysts for a range of vendor technologies to gain full insight into client-monitored sources.
  • Responsive actions to ensure any compromises will be contained and not spread further into your IT environment. Remote incident response and network blocking enable you to experience the full benefits of our Threat Detection Services.

As part of the enhanced services, suspicious activities and all relevant contextual information are passed to a skilled security analyst who verifies the threat and its impact. You then receive a detailed security incident report, with a comprehensive description of the incident and specific, actionable response recommendations. This enables you to significantly reduce the time required to take informed response measures.

Our security analyst will provide updates on the incident report and support your remediation activities until the incident can be closed. Furthermore, to reduce security incident response time and to prevent the spread of an infection, they can optionally take responsive actions to isolate compromised hosts.

The Enhanced service plan provides vendor integration including evidence collection. A deep integration with multiple supported vendors and technologies enables the collection of evidence data and contextual information beyond standard device outputs.

Security analysts perform event-driven threat hunting for a range of vendor technologies as part of the Enhanced service. Using sophisticated proprietary toolsets, skilled security analysts gain full insight into client-monitored sources combined with machine learning, visualization, contextual information and evidence data. This approach allows the analyst to proactively uncover threats or malicious behaviors before they cause significant issues.

Threat Detection Standard:

  • Automated reporting: a sophisticated, automated service for clients seeking entry-level threat detection.
  • Tailored notifications: notification confidence levels can be tailored and set depending on the specific severity level.
Key outcomes

Key outcomes

Accurate detection

Detection of known and unknown threats that may evade standard forms of detection.

Faster detection

73% of all incidents last year were initially detected by our tools, methods and expertise.

Focus on the right things

Increased productivity of in-house security and incident response teams when we take care of all false-positive alerts.

Leverage your security investments

Your existing security infrastructure will be enhanced with our management and analytics capabilities.

See how an attack is detected

Learn more about how we deliver threat detection.
Watch the video
Success stories
See the connection – NTT and Axfood      

Axfood creates a secure environment through managed security services

‘We’re able to rely on NTT as a trusted partner, helping us ensure that all parts of our company remain secure.’

Ronnie Fougner, IT Security Service Manager, Axfood 

Read more
Related services
Partners

Partners

Palo Alto Networks logo
Microsoft
Cisco DNA
Check Point logo
AWS logo
Fortinet logo
Fireeye logo

Why NTT

Recognition

We’re recognized as a leader in managed security services

Recognition

We’re recognized as a leader in managed security services

Global

Six security operation centers deliver services on a global level

Global

Six security operation centers deliver services on a global level

Scale

We analyze two billion events every day

Scale

We analyze two billion events every day

Certified

For ISO27001, SOC2 and Crest

Certified

For ISO27001, SOC2 and Crest
Insights

Related insights and resources

Security
Behind the scenes of the Emotet Infrastructure
Read more
Security
Continuous security controls validation: a CISO’s secret weapon
Read more
Security
International efforts in the fight against global cybercrime
Read more
Security
2021 Global Threat Intelligence Report
Read more
Contact us

We’re here to help!

We partner with organizations around the world to shape and achieve outcomes through intelligent technology solutions.

By clicking the 'Submit' button below, you are agreeing to the NTT Limited Terms and Conditions and Privacy Policy

Personal Information is shared between these listed companies as well as their direct and indirect subsidiaries.

Connect with us

Copyright © 2021 NTT Limited