Ontinue ION promises faster detection and response, deeper understanding of customer’s environments, and the ability to maximize Microsoft security investments. Credit: Adam Le Sommer Managed security services provider Open Systems has announced the launch of Ontinue, a new managed detection and response (MDR) division. It has also unveiled a new managed extended detection and response (MXDR) service, Ontinue ION, along with a new add-on service called Managed Vulnerability Mitigation (MVM).Ontinue ION offers advanced capabilities that enable faster detection and response, a deeper understanding of a customer’s environment and the ability to maximize Microsoft security investments for greater efficiency, according to the firm. MVM helps customers reduce risk by highlighting the vulnerabilities that pose the greatest threats via intelligence and understanding of users’ environments, Open Systems added.The release follows research from last year that highlighted what cybersecurity professionals expect from XDR services, with prevention, detection, and response capabilities as well as entire attack surface coverage and central management/administration all high on the list.Ontinue ION incorporates automation, Microsoft collaboration, risk-based protectionOpen Systems stated that Ontinue ION brings together the cloud-native ION platform and the ION Cyber Defense Center, a 24/7 security operation staffed by experts including the company’s teams of cyber advisors and cyber defenders. The service incorporates automation, Microsoft collaboration, risk-based protection, and threat prevention, the firm added. It’s features include: Automated threat detection, investigation, and response to security incidents, along with semi-automated workflows to help Tier 2 and Tier 3 defenders resolve complex threatsReal-time collaboration that allows customers to interact with their Ontinue SecOps teams through Microsoft Teams instead of a vendor portalIntegration with customers’ Microsoft Sentinel, allowing security teams to maintain possession of their data, optimize Sentinel cost and maximize value from their Microsoft Defender suiteRisk-based, localized protection built on an understanding of each customer’s environment, business operations, and teamsThreat prevention practices via teams of cyber advisors and defendersOntinue to “differentiate Open Systems” in crowded MDR marketThe Ontinue MDR division was created to help differentiate Open Systems in the crowded, noisy MDR market, Tom Corn, chief product officer at Open Systems, tells CSO. “By creating a separate business unit within Open Systems that is entirely focused on our MDR offerings, Ontinue helps us more directly target our MDR ideal customer profile. The Ontinue brand was developed to help accelerate our MDR GTM [go to market] strategy by allowing us to decouple entirely from our flagship SASE portfolio,”Secure access service edge (SASE) and MDR are two of the fastest growing markets in cybersecurity – each devoted to solving different problems for different teams (network operations and network security, and security operations, respectively) in our customers’ organizations, he adds. “By decoupling our SASE business from our MDR business, we are able to serve our customers more effectively in two key ways: Innovation velocity and Improved service delivery.” What do security professionals expect from XDR?In June 2022, Enterprise Strategy Group (ESG) and the Information Systems Security Association (ISSA) published a report detailing the expectations security professionals have in relation to XDR platforms. Almost half of respondents said they want an XDR platform to provide threat prevention, detection, and response capabilities including controls, analytics, and response playbooks, while 42% want coverage across the entire attack surface, including endpoints, networks, data centers, cloud-based workloads, SaaS, identities, and IoT devices.Just under a third (35%) said they want an XDR platform to provide central management and administration, with 30% citing advanced analytics including modern data pipelining, stream processing, easy detection rules engineering, and backend machine learning capabilities. Many organizations want these capabilities and a partner that can offer managed services to make everything work well in their environment. Related content news ChatGPT “not a reliable” tool for detecting vulnerabilities in developed code NCC Group report claims machine learning models show strong promise in detecting novel zero-day attacks. By Michael Hill Oct 04, 2023 3 mins DevSecOps DevSecOps DevSecOps news Google Chrome zero-day jumps onto CISA's known vulnerability list A serious security flaw in Google Chrome, which was discovered under active exploitation in the wild, is a new addition to the Cybersecurity and Infrastructure Agency’s Known Exploited vulnerabilities catalog. By Jon Gold Oct 03, 2023 3 mins Zero-day vulnerability brandpost The advantages and risks of large language models in the cloud Understanding the pros and cons of LLMs in the cloud is a step closer to optimized efficiency—but be mindful of security concerns along the way. By Daniel Prizmant, Senior Principal Researcher at Palo Alto Networks Oct 03, 2023 5 mins Cloud Security news Arm patches bugs in Mali GPUs that affect Android phones and Chromebooks The vulnerability with active exploitations allows local non-privileged users to access freed-up memory for staging new attacks. By Shweta Sharma Oct 03, 2023 3 mins Android Security Vulnerabilities Podcasts Videos Resources Events SUBSCRIBE TO OUR NEWSLETTER From our editors straight to your inbox Get started by entering your email address below. Please enter a valid email address Subscribe