Ontinue ION promises faster detection and response, deeper understanding of customer’s environments, and the ability to maximize Microsoft security investments. Credit: Adam Le Sommer Managed security services provider Open Systems has announced the launch of Ontinue, a new managed detection and response (MDR) division. It has also unveiled a new managed extended detection and response (MXDR) service, Ontinue ION, along with a new add-on service called Managed Vulnerability Mitigation (MVM).Ontinue ION offers advanced capabilities that enable faster detection and response, a deeper understanding of a customer’s environment and the ability to maximize Microsoft security investments for greater efficiency, according to the firm. MVM helps customers reduce risk by highlighting the vulnerabilities that pose the greatest threats via intelligence and understanding of users’ environments, Open Systems added.The release follows research from last year that highlighted what cybersecurity professionals expect from XDR services, with prevention, detection, and response capabilities as well as entire attack surface coverage and central management/administration all high on the list.Ontinue ION incorporates automation, Microsoft collaboration, risk-based protectionOpen Systems stated that Ontinue ION brings together the cloud-native ION platform and the ION Cyber Defense Center, a 24/7 security operation staffed by experts including the company’s teams of cyber advisors and cyber defenders. The service incorporates automation, Microsoft collaboration, risk-based protection, and threat prevention, the firm added. It’s features include: Automated threat detection, investigation, and response to security incidents, along with semi-automated workflows to help Tier 2 and Tier 3 defenders resolve complex threatsReal-time collaboration that allows customers to interact with their Ontinue SecOps teams through Microsoft Teams instead of a vendor portalIntegration with customers’ Microsoft Sentinel, allowing security teams to maintain possession of their data, optimize Sentinel cost and maximize value from their Microsoft Defender suiteRisk-based, localized protection built on an understanding of each customer’s environment, business operations, and teamsThreat prevention practices via teams of cyber advisors and defendersOntinue to “differentiate Open Systems” in crowded MDR marketThe Ontinue MDR division was created to help differentiate Open Systems in the crowded, noisy MDR market, Tom Corn, chief product officer at Open Systems, tells CSO. “By creating a separate business unit within Open Systems that is entirely focused on our MDR offerings, Ontinue helps us more directly target our MDR ideal customer profile. The Ontinue brand was developed to help accelerate our MDR GTM [go to market] strategy by allowing us to decouple entirely from our flagship SASE portfolio,”Secure access service edge (SASE) and MDR are two of the fastest growing markets in cybersecurity – each devoted to solving different problems for different teams (network operations and network security, and security operations, respectively) in our customers’ organizations, he adds. “By decoupling our SASE business from our MDR business, we are able to serve our customers more effectively in two key ways: Innovation velocity and Improved service delivery.” What do security professionals expect from XDR?In June 2022, Enterprise Strategy Group (ESG) and the Information Systems Security Association (ISSA) published a report detailing the expectations security professionals have in relation to XDR platforms. Almost half of respondents said they want an XDR platform to provide threat prevention, detection, and response capabilities including controls, analytics, and response playbooks, while 42% want coverage across the entire attack surface, including endpoints, networks, data centers, cloud-based workloads, SaaS, identities, and IoT devices.Just under a third (35%) said they want an XDR platform to provide central management and administration, with 30% citing advanced analytics including modern data pipelining, stream processing, easy detection rules engineering, and backend machine learning capabilities. Many organizations want these capabilities and a partner that can offer managed services to make everything work well in their environment. Related content news Top cybersecurity product news of the week New product and service announcements from Coro, Descope, Genetec, Varonis, Cloudbrink, Databarracks, and Security Journey By CSO staff Dec 07, 2023 22 mins Generative AI Generative AI Machine Learning news analysis Attackers breach US government agencies through ColdFusion flaw Both incidents targeted outdated and unpatched ColdFusion servers and exploited a known vulnerability. By Lucian Constantin Dec 06, 2023 5 mins Advanced Persistent Threats Cyberattacks Vulnerabilities news BSIMM 14 finds rapid growth in automated security technology Embrace of a "shift everywhere" philosophy is driving a demand for automated, event-driven software security testing. By John P. Mello Jr. Dec 06, 2023 4 mins Application Security Network Security news Almost 50% of organizations plan to reduce cybersecurity headcounts: Survey While organizations are realizing the need for knowledgeable teams to address unknown threats, they are also looking to reduce their security headcount and infrastructure spending. By Gagandeep Kaur Dec 06, 2023 4 mins IT Jobs Security Practices Podcasts Videos Resources Events SUBSCRIBE TO OUR NEWSLETTER From our editors straight to your inbox Get started by entering your email address below. Please enter a valid email address Subscribe