WatchGuard launches AI-driven ThreatSync+ NDR & compliance tools
WatchGuard Technologies has introduced its latest offerings, ThreatSync+ NDR and WatchGuard Compliance Reporting. The new products are designed to assist businesses with smaller IT teams or limited cybersecurity resources by automating continuous threat monitoring, detection, and remediation using advanced AI. This addition to the ThreatSync+ series aims to make comprehensive threat detection and response more accessible.
The ThreatSync+ NDR solution leverages a sophisticated AI engine incorporating a dual-layered neural network, a technological advancement derived from WatchGuard's acquisition of CyGlass in 2023. This AI engine can analyse and prioritise threats, presenting anomalies as risk-scored incidents. Managed service providers (MSPs) and IT security professionals can use an intuitive dashboard to focus on critical threats, review mitigation guidance, and enhance organisational protection.
Don Gulling, founder and CEO of Verteks Consulting, commented on the new tool's accessibility: "WatchGuard ThreatSync+ NDR provides an additional layer of advanced protection that was previously out of reach. In the past, delivering NDR was difficult due to its complexity and high operating costs. Because WatchGuard's cloud-based architecture doesn't require us to install or manage any hardware, we can quickly, easily and cost-effectively deploy ThreatSync+ NDR for our customers."
ThreatSync+ NDR aims to detect attacks that have bypassed perimeter defences, such as ransomware, vulnerability exploits, and supply chain attacks. It identifies these threats through network traffic analysis, even when attackers attempt to conceal their activities. The system is capable of detecting various stages of an attack including command and control communications, lateral movements within the network, and data exfiltration.
This new solution also promises rapid deployment with minimal complexity. Running in the WatchGuard Cloud and compatible with WatchGuard Firebox firewalls, ThreatSync+ NDR does not require additional on-premises hardware. Its design aims to reduce the workload on already stretched IT teams by automating security tasks and providing easy-to-navigate dashboards and reporting tools.
Ben Oster, vice president of product management at WatchGuard Technologies, highlighted the potential benefits for businesses of all sizes: "The launch of ThreatSync+ NDR is the latest example of WatchGuard's continued focus on our partners' opportunity to better protect customers and expand their service offerings. ThreatSync+ NDR makes it exceptionally easy to bring the latest innovations in cybersecurity to businesses of every size so that MSPs meet the evolving threat landscape with up-levelled defences and create new service revenue streams."
WatchGuard Compliance Reporting accompanies the NDR tool, offering a user-friendly framework for generating and automating compliance reports. This tool leverages network controls activated by ThreatSync+ NDR, aligned with standards from organisations such as NIST, ISO, and CISA. The compliance reporting capability supports both automated and manual report creation, covering numerous regulations including FFIEC, NIST-171, CMMC, and GDPR.
The introduction of ThreatSync+ NDR marks an expansion of WatchGuard's XDR (Extended Detection and Response) strategy, centralising their products for shared insights across their Unified Security Platform. This architecture is intended to enable comprehensive responses to cyber threats, with customers able to customise their XDR approach by integrating various ThreatSync+ products.
The new offerings from WatchGuard Technologies illustrate an ongoing effort to equip businesses of every size with advanced cybersecurity solutions, aiming to simplify threat detection and response processes while enhancing compliance capabilities.