Expand Secure Network Analytics With Cisco XDR
Cisco News, Monday, September 18,2023
With the rise of XDR (Extended Detection and Response) adoption, the architecture question arises on how NDR (Network Detection and Response and XDR work together.
Network Detection and Response tools have matured in customer architectures throughout the years. NDRs continuously monitor networks and devices connected to it using telemetry collected from network devices, generated by endpoints, or by deploying sensors to collect such data. NDR uses this telemetry to primary provide unmatched visibility into an environment of managed and unmanaged devices, then analyzes traffic patterns to detect abnormal behaviors caused by potential threats such as data exfiltration, botnet activity and others. In addition, a NDR becomes the main repository of network telemetry for an analyst to perform threat hunting and forensic investigations.