FireEye Mandiant has added Microsoft Defender for Endpoint support to its Managed Defense managed detection and response (MDR) service, according to a prepared statement.
Microsoft Defender for Endpoint customers can use Managed Defense to identify security incidents in real time, FireEye said. They also can work with a Mandiant security expert to triage security alerts and retrieve and analyze threat intelligence.
What Is Managed Defense?
Managed Defense offers 24/7 security monitoring and cyber threat alert prioritization, FireEye stated. It provides users with access to Mandiant security experts who can identify, investigate and prioritize security alerts.
In addition, Managed Defense offers threat intelligence mapped to the MITRE ATT&CK framework, FireEye noted. It provides access to nation-state grade intelligence supported by more than 180 intelligence analysts and assessments to help users evaluate and find ways to improve their security posture.
To date, Managed Defense has helped users resolve 91 percent of high-priority cyber threats, FireEye said. It also has been used to resolve 99 percent of data compromises without additional incident response required.
Introducing FireEye Azure AD Investigator
The addition of Microsoft Defender for Endpoint Support to Managed Defense comes after FireEye in January 2021 launched Azure AD Investigator for Microsoft 365 administrators and security practitioners.
Azure AD Investigator is an auditing script that lets Microsoft 365 administrators and security practitioners check their Microsoft 365 tenants for indicators of compromise (IOCs) that require further verification and analysis, FireEye said. It provides notifications about artifacts that may require additional review to determine if they are malicious or part of legitimate activity.
FireEye offers cybersecurity solutions to more than 10,100 customers globally. The company allows MSSPs and systems integrators to integrate its solutions into their portfolios via its Affinity Partner program.
