SecurityBrief Australia - Technology news for CISOs & cybersecurity decision-makers
Story image
GigaOm recognises WatchGuard Technologies as leader in EDR
Fri, 4th Nov 2022
FYI, this story is more than a year old

WatchGuard Technologies has announced that it has been recognised as a leader by GigaOm in its latest Radar Report on the endpoint detection and response (EDR) market.

GigaOm specifically classifies WatchGuard as an Outperformer that is rapidly innovating its EDR solution and bringing capabilities to the space that are valued by both large and small organisations.

The report evaluated WatchGuard’s advanced Endpoint Protection Detection and Response (EPDR) solution, which includes Endpoint Protection (EPP) and Endpoint Detection and Response (EDR) for comprehensive protection against sophisticated cyber threats.

With continuous monitoring, detection and classification of all activity, WatchGuard Advanced EPDR reveals and blocks anomalous behaviours on computers, servers and processes while proactively alerting security teams to new hacking and evasion techniques.

Andrew Young, Chief Product Officer at WatchGuard Technologies says, “This is great validation of the capabilities and value we bring to the EDR market. Advanced endpoint security capabilities are essential to protect the modern distributed enterprise and a core component of our Unified Security Platform architecture. We’re constantly striving to deliver enterprise grade cybersecurity solutions easily accessible for MSPs to deploy and manage.”

GigaOm noted that WatchGuard Advanced EPDR is a very well rounded and capable solution, calling out as a differentiator its ability to identify previously unknown applications through its Zero-Trust Application Service.

WatchGuard Advanced EPDR combines a wide range of endpoint protection technologies (EPP) with automated detection and response (EDR) capabilities. It also has two services, managed by WatchGuard experts, that are delivered as a feature of the solution.

The Zero-Trust Application Service classifies 100% of processes by default, denying any execution until it is certified as trusted, and the Threat Hunting Service automatically processes all data gathered from telemetry, identifying indicators of attack (IOAs).

Other key features called out by GigaOm include:

  • Osquery integration for rapid forensic evidence collection and interrogation
  • Jupyter Notebook integration for Runbook management
  • Ability to remotely isolate potentially infected endpoints for further evaluation

In addition, GigaOm pointed out that WatchGuard Advanced EPDR includes managed threat hunting, which often requires a separate licence from other vendors.

This is especially important for smaller organisations that may not have the resources or expertise to perform threat hunting on their own. WatchGuard Technologies is a global specialist in unified cybersecurity.

The company’s Unified Security Platform approach is uniquely designed for managed service providers to deliver security that increases their business scale and velocity while also improving operational efficiency.

Used by more than 17,000 security resellers and service providers to protect more than 250,000 customers, the company's products and services offer five critical elements of a security platform: comprehensive security, shared knowledge, clarity & control, operational alignment, and automation.