SEATTLE, June 25, 2024 (GLOBE NEWSWIRE) — WatchGuard® Technologies, a global leader in integrated cybersecurity, today announced the availability of ThreatSync+ NDR and WatchGuard Compliance Reporting. ThreatSync+ NDR is ideal for small IT teams and enterprises of any size with limited cybersecurity resources. The first in the ThreatSync+ product family, ThreatSync+ NDR uses an advanced AI detection engine to automate and simplify continuous threat monitoring, detection and remediation. It cuts through the noise of billions of network flows to quickly and efficiently surface actionable risks and threats. This open XDR solution provides visibility into east-west and north-south network traffic that was previously only available to large enterprises with the resources to manage their own security operations centers (SOCs).
Modern AI for better threat detection and response
ThreatSync+ NDR is powered by an advanced AI engine with a two-layer neural network approach, a key technology from CyGlass, which WatchGuard acquired in 2023. ThreatSync+’s AI engine correlates anomalies and presents them as risk-scored, prioritized incidents, providing managed service providers (MSPs) and IT security professionals with an intuitive dashboard that includes incident location, device, user and timeline, allowing them to focus on the threats that matter most, see mitigation guidance and ultimately better protect their organizations.
“WatchGuard ThreatSync+ NDR adds an extra layer of advanced protection that was previously out of reach,” said Don Gulling, founder and CEO of Verteks Consulting. “Until now, delivering NDR has been difficult due to complexity and high operational costs. WatchGuard’s cloud-based architecture means there’s no hardware to install or manage, making ThreatSync+ NDR quick, easy, and cost-effective to deploy to our customers. The affordable, world-class AI-based protection that WatchGuard ThreatSync+ NDR provides allows us to provide an extra layer of protection to our customers while creating significant growth opportunities for our business.”
ThreatSync+ NDR in action
ThreatSync+ NDR monitors attacks as they unfold within your network and excels at detecting attacks that slip past perimeter defenses, including ransomware, vulnerabilities, and supply chain attacks. ThreatSync+ NDR uses AI to look for attacker behavior embedded in network traffic so attackers can’t see it. At the same time, attackers can’t hide because they must use your network to scale their attacks. This means NDR is uniquely capable of detecting attack stages as they unfold, including command and control calls, lateral movement within your network, reconnaissance scans performed on your network and subnets, data staging movements within your network, malware and encryption packages being deployed on your network, and data exfiltration.
ThreatSync+ NDR is accessible and cost-optimized
- Rapid deployment with no hardware required: Other NDR tools are complex to operate and require the deployment of multiple hardware clusters. ThreatSync+ NDR runs on WatchGuard Cloud and can be deployed in under an hour per location (instant deployment if you use a WatchGuard Firebox firewall). It doesn’t require new hardware on-premise, and its simplicity means it’s easy to manage for even the smallest IT teams.
- ThreatSync+ NDR provides enterprise-grade machine learning. It is one of the most advanced AI detection engines on the market, with specialized AI models to detect cyber threats such as ransomware, vulnerability-based attacks, supply chain attacks, etc. It continuously monitors 24/7 for attacks that penetrate perimeter defenses.
- ThreatSync+ NDR automates and simplifies continuous monitoring, detection and remediation. It uses AI to reduce IT workload, and the solution’s dashboards, guidance, and reports make it accessible to any IT team member.
- Open XDR. ThreatSync+ NDR works seamlessly with WatchGuard Fireboxes to enhance the intelligence and remediation capabilities of WatchGuard ThreatSync XDR, and also supports third-party firewalls and industry-standard routers and switches, making it effective for any organization.
“The release of ThreatSync+ NDR is the latest example of how WatchGuard continues to focus on opportunities for our partners to better protect their customers and expand their service offerings with additions to our unified security platform,” said Ben Oster, vice president of product management at WatchGuard Technologies. “ThreatSync+ NDR makes it incredibly easy to deliver the latest cybersecurity innovations to businesses of all sizes, so MSPs can keep up with the evolving threat landscape with enhanced defenses and generate new service revenue streams.”
WatchGuard Compliance Reports
NDR and XDR tools often don’t include compliance reporting capabilities or rely on expensive and complex governance, risk, and compliance (GRC) products. WatchGuard Compliance Reporting fills the gap with an easy-to-use reporting framework and automated report generation.
WatchGuard Compliance Reporting leverages hundreds of network controls activated from ThreatSync+ NDR for automated or manual reporting. Network controls defined in NIST, ISO, CISA, and Cyber Essential standards can be easily enabled at deployment time. WatchGuard Compliance Reporting allows IT and compliance teams to further report on regulatory acts built from these standards. Out-of-the-box compliance reports include FFIEC, NIST-171, CMMC, GPDR, IEEE, and more. Additionally, reports can be easily configured to comply with custom standards imposed by cyber insurance companies, industry standards such as Motion Picture Association (MPA) compliance, and third-party risk assessments of supply chain vendors.
WatchGuard Expands XDR Strategy with New ThreatSync+ Product Family
The WatchGuard ThreatSync architecture centralizes XDR products and strategies, sharing valuable knowledge and insights across the Unified Security Platform® architecture. As XDR capabilities grow and evolve, so does WatchGuard’s ThreatSync family. Its core functionality creates the integrated remediation and response engine required for XDR, and these benefits are available at no extra cost with each eligible WatchGuard product sold. The ThreatSync+ AI engine layers advanced threat detection and analysis, and supports third-party participation for an open XDR solution. Customers can add ThreatSync+ licenses to customize their XDR approach to their unique needs, starting with ThreatSync+ NDR and including other ThreatSync+ products in the future.
To learn more about WatchGuard ThreatSync+ NDR, click here.
Additional resources:
About WatchGuard Technologies, Inc.
WatchGuard® Technologies, Inc. is a global leader in integrated cybersecurity. Our Unified Security Platform® architecture is uniquely designed for managed service providers to deliver world-class security that accelerates the scale and speed of their business while improving operational efficiency. Trusted by more than 17,000 security resellers and service providers to protect more than 250,000 customers, our award-winning products and services span network security and intelligence, advanced endpoint protection, multi-factor authentication, and secure Wi-Fi. Together, they deliver five critical elements of a security platform: comprehensive security, knowledge sharing, transparency and control, operational orchestration, and automation. The company is headquartered in Seattle, Washington, with offices throughout North America, Europe, Asia Pacific, and Latin America. Learn more at WatchGuard.com.
For more information, promotions, and updates, follow WatchGuard on our LinkedIn company page, YouTube, Instagram, X (@WatchGuard), or Facebook, follow the WatchGuard Threat Lab on our Cybersecurity Hub, and if you like podcasts, subscribe to The 443 – Security Simplified podcast.
WatchGuard is a registered trademark of WatchGuard Technologies, Inc. All other trademarks are property of their respective owners.
###