MDR Provider CI Security Announces EDR for Microsoft Defender ATP
CI Security, a managed detection and response (MDR) services provider, has integrated Microsoft Defender Advanced Threat Protection (ATP) capabilities into its Critical Insight endpoint detection and response (EDR) solution, according to a prepared statement.
The integration enables CI Security to monitor security events and alerts from Microsoft Defender ATP, the company said. It also allows CI Security to push tickets to security analysts for investigation and isolate machines based on playbooks developed with each customer.
A Closer Look at Critical Insight
Critical Insight delivers agentless intrusion detection and response across Internet of Things (IoT) environments, CI Security stated. It is backed by security analysts who monitor network traffic, detect anomalies and investigate cyber threats.
Furthermore, Critical Insight tracks cyber threats across SaaS applications and cloud solutions, including:
- Amazon Web Services (AWS): Retrieves data from AWS Native Services, uses security findings from GuardDuty and ingests data from CloudTrail for infrastructure and authorization events and CloudWatch for security logs and instance-level data.
- Microsoft Azure: Uses the Microsoft Graph API to collect security data from Azure security services.
- Microsoft Office 365: Streams Office 365 logs in real-time to Office 365 Cloud Collector, which ingests them and compares them with other data sources.
Critical Insight is intended for use by organizations in healthcare and other highly regulated industries, CI Security noted. It empowers these organizations with threat detection, investigation, response and recovery capabilities.
CI Security Adds Series B Financing
In addition to its Microsoft Defender ATP integration, CI Security recently raised $16 million in Series B financing. CI Security is using the funding to explore ways to accelerate its growth in the healthcare market.
CI Security provides MDR, vulnerability detection and cybersecurity consulting services. The company helps organizations secure critical infrastructure.