Highlights
-
-
Dell and CrowdStrike co-develop proprietary threat indicators to accelerate response
-
Dell’s collaborative security operations center model provides infrastructure visibility and expert guidance
-
Dell Technologies expands its Managed Detection and Response (MDR) service to bolster data protection security and mitigate cyberattacks more effectively.
Why it matters:
Threat actors are increasingly targeting data protection environments first because they are fundamental to recovering and restoring corrupted data. Today, IT security teams rely on the infrastructure to provide system log information to a Security Incident and Event Management (SIEM) tool. This creates a flood of unprioritized alerts that security teams have to spend significant amounts of time manually reviewing and addressing, adding another layer of complexity to managing infrastructure security.
Dell MDR with CrowdStrike Falcon Next-Gen SIEM Simplifies Threat Detection
Dell uses CrowdStrike Falcon® Next-Gen SIEM as part of its MDR service to simplify threat detection and response with a unified platform, boosting visibility and preventing breaches, giving enterprises visibility into their infrastructure that’s not possible with off-the-shelf tools.
Dell and CrowdStrike Build Proprietary IOCs for Data Protection
Dell and CrowdStrike developed more than 60 unique Indicators of Compromise (IOCs) tailored specifically for Dell PowerProtect Data Domain and PowerProtect Data Manager. The IOCs are surfaced within Falcon Next-Gen SIEM’s AI-powered detections, ranked by severity, and provide high quality forensics data to Dell security analysts to accelerate response. Examples include disabled multifactor authentication, login from a public IP address, mass data deletion, multiple failed login attempts and much more.
Dell MDR’s Collaborative SOC Model Augments Customer Security Teams
Dell provides ‘around the clock’ monitoring from expert security analysts dedicated to IT and data protection environments. While customers invest significant resources into building their SOCs, Dell extends their capabilities with expert detection, analysis and rapid Incident Response and Recovery to address threats efficiently. Customer security teams gain a trusted partner to improve visibility, coverage and threat response, while retaining control.
Perspectives
“Extending MDR to cover data protection infrastructure and software enhances visibility and proactive threat detection across the environment, providing exceptional protection from threats,” said Mihir Maniar, vice president, infrastructure, edge and security services portfolio, Dell Technologies. “Dell and CrowdStrike have developed advanced threat detection capabilities to provide actionable, high-quality data to our security experts. With this expansion, we’ve extended our MDR service to provide end-to-end coverage across IT environments.”
“Falcon Next-Gen SIEM provides Dell MDR with a powerful, foundational new platform to seamlessly ingest rich data backup and protection telemetry, and rapidly detect and respond to threats,” said Daniel Bernard, chief business officer, CrowdStrike. “Together, we look forward to delivering the technology and services that customers need to transform security operations, protect critical data, and stop breaches.”
Availability
Dell MDR is available in 75 countries today.
