Sophos launches managed detection and response for Microsoft Defender

Sophos has recently introduced Sophos Managed Detection and Response (MDR) for Microsoft Defender, a comprehensive managed service that enhances the security of Microsoft environments. 

Sophos MDR for Microsoft Defender is designed for organizations utilizing Microsoft Security. It equips them with robust threat response capabilities and acts as a critical layer of protection, ensuring round-the-clock safeguarding against data breaches, ransomware, and other cyberattacks by adversaries.

“Attackers are extremely persistent, and organizations need a human layer of security to conduct threat hunts, identify attacker behaviors attempting to evade security tools, and respond to stop attacks with speed and precision,” said Raja Patel, senior vice president of products and managed services at Sophos. 

Sophos: Cyber defense impacts insurability
Sophos: Hackers utilize LOLbins to attack organizations

Sophos aims to support organizations by providing the necessary security measures without requiring them to replace their existing technologies. This approach enables channel partners to deliver Microsoft Security offerings to ensure their customers are fully protected and optimize the value of their current deployments.

Microsoft Security tools

Sophos MDR for Microsoft Defender integrates telemetry from various Microsoft Security tools, going beyond the limited support offered by other MDR solutions. It strengthens the entire Microsoft Security suite, including Microsoft Defender for Endpoint, Microsoft Defender for Identity, Microsoft Defender for Cloud, Microsoft Defender for Cloud Apps, Identity Protection (Azure Active Directory), Office 365 Security and Compliance Center, Microsoft Sentinel, and Office 365 Management Activity.

Telemetry from these sources is consolidated, correlated, and prioritized automatically, combining insights from the Sophos Adaptive Cybersecurity Ecosystem and the Sophos X-Ops threat intelligence unit. This collaboration involves over 500 security analysts, threat hunters, responders, data scientists, and specialists from around the world. Consequently, the Sophos MDR operations team can identify and mitigate more threats compared to Microsoft Security tools or any individual security technology.

According to IDC research, despite significant investments in cybersecurity tools, 65% of organizations have experienced a significant ransomware event in the past year. The industry research firm highlighted the challenges faced by IT and security teams, who are often overworked and understaffed.