Hello CINners,
No, I ain't talking about Disaster Recovery - not that DR. My focus in this post in on
Detection and Response.
In cybersecurity, we got all these DRs that adding more and more weight to the barbell:
- EDR - a single-point security tool; focusing solely on endpoint device protection
- NDR - focusing on network-level threat detection; specifically monitors network traffic for suspicious activity
- MDR - a service offering; a managed service that includes threat detection and response capabilities; often
built on top of EDR
- TDR - Threat Detection and Response; two most common uses: endpoint TDR and analytical TDR
- XDR - provides a unified view across multiple security layers, like endpoints, networks, and cloud; integrates
various security data sources
Okay, most of you already know about these DRs. I only stopped today to ask if any of these appear in the
objectives of the CompTIA cert exams.
As always, thanks for your time!!!
No, I ain't talking about Disaster Recovery - not that DR. My focus in this post in on
Detection and Response.
In cybersecurity, we got all these DRs that adding more and more weight to the barbell:
- EDR - a single-point security tool; focusing solely on endpoint device protection
- NDR - focusing on network-level threat detection; specifically monitors network traffic for suspicious activity
- MDR - a service offering; a managed service that includes threat detection and response capabilities; often
built on top of EDR
- TDR - Threat Detection and Response; two most common uses: endpoint TDR and analytical TDR
- XDR - provides a unified view across multiple security layers, like endpoints, networks, and cloud; integrates
various security data sources
Okay, most of you already know about these DRs. I only stopped today to ask if any of these appear in the
objectives of the CompTIA cert exams.
As always, thanks for your time!!!
