-
2021 Global Workplace Report
Conflicting stakeholder views on the future of work point to gaps in detail, tools and enablement
Read the report -
Services & Products
Leverage our capabilities to accelerate your business transformation.
-
Services & Products
Network as a Service
-
Services & Products
Multicloud as a Service
-
Services & Products
Edge as a Service
-
Services & Products
Software-defined Infrastructure Services
-
Services & Products
Global Data Centers
-
Services & Products
Collaboration & CX
-
Services & Products
Security
Weaving a digital fabric
See how the network is the foundation for edge-to-cloud connections.
Read the blog -
-
Insights & Resources
Explore how technology shapes business, industry, and society.
Overview
Automate and optimize your organization’s threat detection capabilities
Our Threat Detection Services identify threats by analyzing vast amounts of raw log data from your networks, endpoints, cloud and secure access service edge (SASE). The large number of false-positives typically generated gets separated from the true-positives and suspicious activity is identified. By using threat intelligence, machine learning, advanced analytics and threat behavior modelling, we can accurately detect both known and unknown threats that evade standard detection techniques. Our Threat Detection Services deliver the strong, resilient security posture needed to protect your valuable information assets against dynamic security threats.
Services
Threat Detection Services options
Threat Detection Enhanced:
- Deep integration with next-generation firewalls, endpoint detection, sandboxes and secure access service edge (SASE) with multiple supported vendors and technologies. This enables the collection of evidence data and contextual information well beyond standard syslog outputs.
- Event-driven threat hunting by security analysts for a range of vendor technologies to gain full insight into client-monitored sources.
- Responsive actions to ensure any compromises will be contained and not spread further into your IT environment. Remote incident response and network blocking enable you to experience the full benefits of our Threat Detection Services.
As part of the enhanced services, suspicious activities and all relevant contextual information are passed to a skilled security analyst who verifies the threat and its impact. You then receive a detailed security incident report, with a comprehensive description of the incident and specific, actionable response recommendations. This enables you to significantly reduce the time required to take informed response measures.
Our security analyst will provide updates on the incident report and support your remediation activities until the incident can be closed. Furthermore, to reduce security incident response time and to prevent the spread of an infection, they can optionally take responsive actions to isolate compromised hosts.
The Enhanced service plan provides vendor integration including evidence collection. A deep integration with multiple supported vendors and technologies enables the collection of evidence data and contextual information beyond standard device outputs.
Security analysts perform event-driven threat hunting for a range of vendor technologies as part of the Enhanced service. Using sophisticated proprietary toolsets, skilled security analysts gain full insight into client-monitored sources combined with machine learning, visualization, contextual information and evidence data. This approach allows the analyst to proactively uncover threats or malicious behaviors before they cause significant issues.
Threat Detection Standard:
- Automated reporting: a sophisticated, automated service for clients seeking entry-level threat detection.
- Tailored notifications: notification confidence levels can be tailored and set depending on the specific severity level.
Key outcomes
Key outcomes
Accurate detection
Detection of known and unknown threats that may evade standard forms of detection.
Faster detection
73% of all incidents last year were initially detected by our tools, methods and expertise.
Focus on the right things
Increased productivity of in-house security and incident response teams when we take care of all false-positive alerts.
Leverage your security investments
Your existing security infrastructure will be enhanced with our management and analytics capabilities.
Success stories
Partners
Partners
Why NTT
Recognition
We’re recognized as a leader in managed security services
Recognition
We’re recognized as a leader in managed security services
Global
Six security operation centers deliver services on a global level
Global
Six security operation centers deliver services on a global level
Scale
We analyze two billion events every day
Scale
We analyze two billion events every day
Certified
For ISO27001, SOC2 and Crest
Certified
For ISO27001, SOC2 and Crest
Insights
Contact us