Scribd
Upload
426 views12 pages

EDR Customer Presentation

Uploaded by

Jaime Morales
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PPTX, PDF, TXT or read online on Scribd
426 views12 pages

EDR Customer Presentation

Uploaded by

Jaime Morales
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PPTX, PDF, TXT or read online on Scribd

Trellix EDR

Speaker Name

1 Trellix | Always Learning. Always Adapting.


Clarity to act. Simplicity to execute.

Simple
Modern SaaS infrastructure, streamlined
workspaces and consolidated policies

Flexible
Incorporate existing investments Clarity to act
including native and 3rd-party controls
SOC
Comprehensive
Defend your diverse ecosystem and
drill-down into contextual insights
Devices Cloud
Fast
Accomplish more with less effort through
tactical automation and AI guidance Simplicity to execute

2
Control where it matters most
Endpoints Generate a Lot of Data for Analytics
Today, EDR tools require experienced people
to connect the dots

WHY?
• Lots of rich data but no findings

• Lots of alerts

• High level of skill – often in short


supply – required to interpret and
investigate alerts

3
Trellix’s Approach to EDR

Faster resolution with higher fidelity


Gather Data / Assess / Scope
Dynamic, Guided
Analytics Investigation
Data
Validate

Alert
Data/Context
High Confidence
Hunting

Respond

4
EDR

Collect Data Surface Threats Guide investigation Respond

Investigate the
Alert

Simple, cloud-centric Suspicious behavior Enable junior Historical search


architecture detection analysts Real-time search
Always-on data File-based and fileless Force-multiply Data visualization
collection threats expertise with AI
Robust response
Broad visibility MITRE ATT&CK™ Automate alert triage actions
Flexible retention framework driven Correlate enterprise
identification and data for complete
mapping visibility

5 Detect and act on threats faster with existing staff


EDR
Powerful threat detection, investigation, and response - simplified

Detect & act on advanced threats faster to stop breaches


and improve security posture

Do more with existing staff by reducing the expertise and


effort needed to perform investigations

Respond with speed using one console, single-click


containment and ecosystem integration

6
MITRE ATT&CK alignment for detection

Investigation Guides aligned to


MITRE ATT&CK framework
7
Do More with Existing Staff
Expert system dynamically guides investigation

Surface Findings

Explore many hypotheses in Automatically ask and


parallel for maximum answer questions to
speed and accuracy. prove or disprove the
hypotheses.

Dynamically adjust to case Automatically gather,


at hand, combine different summarize, and visualize
strategies and data. evidence from multiple
sources.

Faster resolution with higher fidelity

8
Respond with Speed

Quickly take action at scale with a clear understanding of the


threat

Increase efficiency with a single workspace for entire the


process: detection-investigation-response

Integration optimizes security operations workflow

9
EDR Simple, Scalable, Flexible

Simplicity and power of the cloud Flexible agent deployment and management

Trellix EDR Trellix ePO ePO


SaaS-based on-premises

SaaS-based solution: Flexible, centralized security management platform helps:


 Enables fast implementation  Support transition to cloud
 Eliminates on-premises infrastructure  Provide continuity
 Speeds availability of new analytics and  Streamline deployment
features  Simplify ongoing management

10
Change the Game with Trellix EDR

Detect & act on Do more with Respond


threats faster existing staff with speed

 Cloud-based detection  Dynamic investigation  Single-click containment


 ATT&CK™ framework guides up-level all analysts  Ecosystem integration
driven identification & beyond endpoint
mapping
 AI-powered investigation
guides

11
Thank you

12 Trellix | Always Learning. Always Adapting.

You might also like