How do I pick the best detection & response?

Question 1: Consider the current state of your company's security infrastructure?^*

Consider the security maturity level of your business in its current state. Which of the following statements best describes your organization:

We are just getting started with MDR and want to set up the fundamentals as soon as possible.

We've been investigating this space for some time now, and we'd like to increase our visibility over our endpoints

We have mature requirements, including threat detection across our main business systems and essentials.

Question 2: Do you have a significant number of unmanaged devices connected to your network?^*

In your organization, even when few devices are unmanaged, that is also considered as unmanaged, so please answer accordingly

No, all are managed centrally

Yes, Plenty of them

Question 3: Do you need to keep raw log data for a certain amount of time to meet regulatory requirements?^*

Are there any compliance obligations in place that necessitate the retention of raw log data for a specified duration, in other words, a legal hold?

No we have no requirement to store raw log data

Yes we have set requirements that mandate the storage of raw log data

Question 4: Could you add a new sensor to your endpoints to improve their ability to detection and response?^*

Would it be possible to implement the installation of a sensor on the endpoints in order to enhance the capabilities of detection and response?

Yes, We could easily send sensors to our end-user computing system and server estate from a central location.

EDR sensors we already have cover a good amount of our end user computer environment and server estate.

It would be hard to put sensors in our end-user computing system or server estate from one place.

Confused selecting a right detection & response solution?