MDR (Managed Detection & Response)
Definition
MDR is a managed security service in which an external team of experts continuously monitors an organisation's network, detects threats and actively responds to incidents, 24/7.
MDR combines advanced technology (EDR, SIEM, threat intelligence) with human expertise to detect threats that traditional security solutions miss. An MDR provider manages the complete detection-and-response cycle on behalf of the client.
Unlike traditional MSSPs (Managed Security Service Providers) that only alert, MDR also actively intervenes: threats are remediated, isolated or contained. This dramatically reduces time-to-contain.
MDR is particularly valuable for organisations without their own SOC or with limited security capacity. DEFION offers MDR including 24/7 threat hunting and Active Defense.