Solutions Review’s NDR Vendors to Watch is an annual listing of solution providers we believe are worth monitoring. Companies are commonly included if they demonstrate a product roadmap aligning with our meta-analysis of the marketplace. Other criteria include recent and significant funding, talent acquisition, a disruptive or innovative new technology or product, or inclusion in a major analyst publication.
Network detection and response solutions discover hidden malicious actors on a system and initiating a counterattack to remove the actor and heal any damage it’s already done. NDR tools contain root cause analysis and mitigation response features to deal with security problems it discovers. When one detects a threat, it performs real-time analysis to determine what kind of threat it is. It then configures a counterattack response based on this analysis in an attempt to stop and remove the actor from the network.
These NDR Vendors to Watch have met at least two of our five points of inclusion and represent to some degree the evolution of the marketplace. It’s in that spirit we turn our attention to the immediate future. Vendors are listed in alphabetical order; names and logos are linked so you can learn more.
ExtraHop Reveal(x) is a cloud-based network detection and response platform that gives organizations real-time visibility into their network from the inside out. With ExtraHop, IT teams can maintain a comprehensive view of their entire ecosystem with auto-discovery and auto-classification capabilities. ExtraHop gives users the ability to mitigate performance issues immediately with continuous and real-time end-user monitoring. The vendor was named a finalist in the 2020 CRN® Tech Innovator Awards for Innovative IoT Security.
Fidelis Cybersecurity is a detection and response vendor that focuses on both endpoint and network detection capabilities. Its NDR solution, Fidelis Network, detects threats, prevents data loss, and eliminates blind spots by detecting malicious behavior and identifying traffic anomalies. The system utilizes rich network metadata for security analytics, machine learning, investigations, and threat hunting. Fidelis recently appointed industry veteran Anup Ghosh, previously of Accenture and Invincea, to the position of CEO.
LogRhythm NetworkXDR detects network-borne threats in real-time with SOAR capabilities. It offers ease of use without requiring sophisticated network forensics expertise. Using purposed, versatile sensors that generate advanced network details, LogRhythm NetworkXDR incorporates multiple machine analytics approaches to expose evolving threats more effectively. The vendor recently won the TrustRadius 2020 Tech Cares award for its support of its customer base during the COVID-19 pandemic.
Vectra’s Cognito Platform is a network detection and response solution that delivers intelligent, AI-driven threat detection for cloud, SaaS, and on-premise footprints. Vectra collects and stores network metadata and enriches it with machine learning, using its customer pre-built SaaS app to investigate and hunt for threats based on AI-driven detections. After a round of Series E funding worth $100 million in 2019, Vectra has expanded its NDR capabilities to both Microsoft Security Services and the cloud.
VMware NSX detects and automatically responds to advanced network threats. The platform detects and contains sophisticated security incidents before they disrupt a user’s business, delivering high-fidelity insights from the cybersecurity industry into threats entering or operating in your on-premises and cloud network. VMware NSX previously operated under the name Lastline Defender; Lastline was acquired by VMware in 2020, and the vendor has incorporated Lastline’s systems into their network security tools.
Looking for a solution to help you improve your network performance? Our Network Monitoring Buyer’s Guide contains profiles on the top network performance monitor vendors, as well as questions you should ask providers and yourself before buying.
Check us out on Twitter for the latest in Network Monitoring news and developments!