Skip to the content

Who is looking after your network when you are asleep?

During the online session Eric Kokonas, MTR Senior Product Marketing Manager, and Mat Gangwer, MTR Technical Director, reviewed the threat landscape, explained how MTR fits in an organisation’s cybersecurity strategy and provided an overview of the service.

Sophos Managed Threat Response (MTR) provides 24/7 threat hunting, detection, and response capabilities delivered by an expert team as a fully-managed service.

Threat Landscape

Currently, we are noticing four main types of attack trends which most often result in incidents and breaches.

“Living off the Land”

Attackers use legitimate native tools within an organisation which allow them to gain Admin Account rights to execute their goal. These tools are expected to exist within an environment, which makes it difficult to spot and identify malicious activity. Here is where the MTR capabilities are useful, and the team can help to locate the undercover attack.

Automated Active Attack

This is an attack where the hacker is taking advantage of the advances in automation. However, what we need to keep in mind is that there actually is a person behind the attack whose goal is to evade the security controls in place and remain unseen.

Counter Measure Neutralisation

Counter Measure Neutralisation is similar to Automated Active Attacks, but they are more targeted, silent and methodical. In this case the attacker looks at ways to switch off or control the security tools to remain undetected and find things like back-ups which will make you more prone to pay the ransom.

Supply Chain Attack

This is an attack which comes from an organisation’s supplier or vendor who are part of their supply chain and uses the connection to gain access to the company’s network.

Every company’s security objective is to detect attacks on sensitive data assets and neutralise the incidents before they become a breach. This strategy contains three core components: Protect, Detect, Respond.

Most companies do all three but need helping at the latter two stages. Tools can help only to a certain extent. Managed Threat Response fills the gap between Managed Security Services and Managed Detection and Response. It is a combination of automated tools, machine learning and human intelligence and skills. Technology helps to filter the information, while people can investigate further and respond.

Among the main challenges organisations face is the cybersecurity talent shortage. They also fail to extract the optimum value from the tools they have and overlook the human element, which should be a key element of their strategy.

Managed Threat Response by Sophos addresses all these challenges and provide a solution. To learn more watch the webinar or our interview with the Sophos team or simply call us on 0330 107 1860.

About the author

Chess

Chess

Chess is one of the UK’s leading independent and trusted technology service providers, employing 300 skilled people across the UK, supporting over 20,000 organisations.

 By leveraging world-class technology, Chess helps you to connect your people, protect your data, grow your business, reduce your costs and work better together, which means your business, your people and your customers can thrive.

At Chess, we’re passionate about our unique culture and our continuous investment in our people to be industry experts. We’re extremely proud that our people voted us No.1 in ‘The Sunday Times 100 Best Companies to Work for’ list 2018, and we continue to celebrate more than ten years in the top 100.

Speak to a Product Specialist

You can fill out the form and one of our product specialists will contact you shortly with more information.
Sales
To contact our Sales team directly, please call 0344 770 6000 and choose option 4.
Customer Service
For general queries or to report a non-urgent fault, please log a ticket on our customer portal using the email address associated with your account. Logging a ticket is quick and easy to do. Once you have logged your ticket, we will respond within 24 hours or your Service Level Agreement, whichever is quicker.
I agree for my information to be used for marketing communications.