Professional Documents
Culture Documents
Bitdefender MDR Final 2023
Bitdefender MDR Final 2023
Bitdefender MDR Final 2023
Global Leader In
Cybersecurity
Cyber
Skills Gap Complexity Alert Fatigue Compliance
Insurance
Internal Use Only
"It is not quite equivalent to having someone… living in this environment 24/7, but it’s the
closest you’re gonna get to an external entity, it’s super comprehensive." Gartner
Internal Use Only
XDR
EDR
GravityZone® Business
Security Enterprise
Internal Use Only
Threat-Intel Hunts
Threat Modeling
Professional Services
Dedicated SAM
CUSTOMER
OPERATIONS
SECURITY
OPERATIONS
SECURITY
PLATFORM
& OPTIMIZATION
Internal Use Only
Customer Success
Enter license Deploy and configure MDR is now monitoring Receive MDR Portal login to
information into GravityZone Agents & your environment round- tune the service, view
GravityZone XDR Sensors (option the-clock, ready to recommendations, create
to use Professional respond support tickets, and get
Services) insight into investigations
“[Bitdefender] takes the time and make the effort to understand [the customer's] business.
That's not something I personally see coming from your competitors.” - Gartner
Internal Use Only
MDR Operations
Global Team: Security Operations Centers: San Antonio, Texas & Bucharest, Romania
Expertise:
• 40+ SANS certifications; Incident Handling, Forensics, SIEM with Tactical Analysts, Cyber Threat
Intelligence
• Cloud Admins, System Administrators, IT (education, government, healthcare)
• Global Military Intelligence (USAF/USA, NSA, NATO)
• e
Findings,
Recommendations
Baseline Logic
& Response
Managed Cyber Intelligence Actions
Customer Baseline Fusion Cell
Customer
Telemetry Curated Threat
Intelligence Active Monitoring
Data & Response
Normalization
Threat Hunting
Rules & Anomaly
Analytics
Investigation
Customer
Specific
Internal Use Only
Threat Hunt
Investigation Identification Containment Eradication
MDR Detection
AMR Notification to
CST
Threat Intelligence
Global Intel Tailored Threat High Priority Dark Web Brand & IP
Analysis Modeling Target Monitoring Monitoring Protection
Internal Use Only
Threat Modeling
Threat Landscape
Provides you with detailed intelligence of potential risks from malicious actors to your business
and employees.
Internal Use Only
Reporting / Metrics
Vertical-specific threat landscape
Real-time dashboards
MDR Overview
• World-class team of security
experts who protect our customers
24x7
Thank you
Prenume Nume,
Job Title
Appendix
OR
Security telemetry and events collected from customer endpoints, analytics, records
of investigations made by the Bitdefender SOC, observable behaviours, company
details.
Depending on information given during on-boarding
and discoveries during service
• Company Details
• Domain Names
• IP Addresses
• User Information
• Brand information
✓
Isolate Host A host infected with malware could laterally spread to GravityZone created Root Windows, Linux and
(No Network other hosts, enabling further damage within the Cause Analysis MAC
Communication) network.
✓
Stop Process A host infected with malware could potentially hijack or GravityZone created Root Windows, Linux and
create new processes/scripts that enable further Cause Analysis MAC
damage to the host and/or network.
✓
Block File A file that is associated with or conducting malicious GravityZone blocklist
activity. based on SHA256 or MD5
Block IP
✓
A possibly malicious IP is targeting or communicating Firewall section in Policy Requires Firewall
with a host and/or network. Module, Windows Only
✓
Block Ports Malware known to communicate over specific port. Firewall section in Policy Requires Firewall
Module, Windows Only
✓
Delete File A file that is associated with or conducting malicious GravityZone created Root
activity. Cause Analysis
Internal Use Only
Features Foundations Premium Enterprise
• Threat Management X X X
• MDR Portal X X X
• Security Baseline X X
30B 400+ 18
daily threat threats ransomware
queries discovered decryptors
every minute provided to
the market
T1 T1 Fixed
Mobile
operator
operator
in USA in USA