Next-Gen EDR/MDR/XDR – Field Effect Covalence
What is Field Effect Covalence, what are the key enhancements featured, and why should you consider it?
Field Effect Covalence is an EDR/MDR/XDR solution that is designed to drive positive business outcomes and to work seamlessly across technology environments.
Feature lists of various MDR (managed detection & response) offerings can make it seem like they are all providing the same coverage, but the key variable is which portion of the threat surface the MDR service is targeting. In contrast to an “MDR” that is simply managed EDR (endpoint detection & response), Covalence takes a Hybrid MDR approach. In a single solution, customers get protection across endpoints, network, and cloud workloads. Because everything was designed to work together holistically, customers get more accurate results without alert overload and get better protection overall.
This Hybrid MDR is ideal for the under-served small to mid-sized enterprise (SME) market, as it consolidates multiple solutions into one, offering the best protection at a reasonable price point. Perhaps the most valuable outcome of Covalence is the single dashboard that delivers straightforward, easy-to-consume information designed for the SME or managed service provider (MSP).
Field Effect’s Covalence Platform offering has been built on the following four principal fundamentals:
- Easy Setup – Deploy, manage, and access easily with minimal setup time, regardless of your IT or cybersecurity expertise.
- Comprehensive Monitoring & Protection – Secure your network, devices, and cloud-based applications with one platform. The built-in DNS firewall ensures safe web browsing and internet access by blocking connections to malicious websites.
- Dedicated Security Advice & Support – The in-context concierge service offering provides customers with on-demand help when dealing with an anomaly, leveraging dedicated, experienced cybersecurity analysts who deliver personalized support, technical advice, and security strategy recommendations.
- Clear, Relevant Threat and Risk Alerts – Actions, Recommendations, and Observations (AROs, the proprietary Covalence approach) are summarized into relevant threat data in a simplified, prioritized, actionable reporting format, enabling administrators to be more competent. The proprietary approach is meant to reduce false positives to show only the alerts that matter with the context needed to resolve them.
Source: Field Effect
Covalence provides clear, near real-time, holistic endpoint/managed detection and response (EDR/MDR) for your IT teams in one platform to address threats and vulnerabilities.
Covalence delivers on three of the most beneficial cybersecurity capabilities recognized as critically important by enterprises (small and large):
- Endpoint threat sensor and monitoring
- Support for Windows, Linux, and macOS.
- Identification of lateral movement within a network.
- Continuous analysis to identify software vulnerable to remote code execution.
- Built-in Active Response capabilities (like network quarantine or process termination).
- Cloud Threat Detection
- Coverage for a growing list of cloud platforms, including Microsoft 365, Google Workspace, Microsoft Azure, Amazon AWS, Dropbox, Box.com, Salesforce, ServiceNow, and more.
- Visibility of active threats over cloud systems.
- Detection of compromise to business email and Active Response in the cloud (e.g. disabling an account).
- Built-in user and entity behavior analytics (UEBA).
- Alerting on important security-related configuration changes.
- Full capture network sensor and monitoring
- Threat intelligence-backed Indicators of Compromise (IOC) denylists.
- Advanced packet inspection and threat detection.
- Advanced anomaly and node behavior deviation detection.
- Machine learning analytics to identify new and unknown anomalies.
- Internet of Things device monitoring.
- Packet capture and replay of network traffic in the event of a suspicious or confirmed incident.
- Complete capture (bit-level) analysis.
Due to the increased popularity of enterprises migrating resources and/or services to the cloud, Field Effect Covalence is the definitive cybersecurity solution – a simple, easy-to-deploy, and cost-effective technology agnostic platform that monitors and protects your entire IT environment, providing significant return on investment.
Acronis Offers a Unique Endpoint Protection and Data Recovery Package Tailored for the Small to Medium-Sized Business
Acronis hopes to overtake many competitors in the data recovery and endpoint protection solution space by forging partnerships with many MSSPs and appealing to the SMB market. The company has doubled down by hiring the former CEO of GoDaddy, who is committed to reinvesting in its technology and increasing and improving its product line.
To SIEM or Not to SIEM?
Information security leaders fully understand the importance of having a security incident and event management (SIEM) solution, but teams need to overcome three main challenges before considering purchasing a SIEM solution.
Chronicle Expands Its North American Presence by Partnering With Herjavec Group
Chronicle, Alphabet’s enterprise security company, expands its North American partner base with Herjavec Group, its first Canadian partner. Herjavec Group is the first service provider in Canada to be certified in, and provide access to, Chronicle’s security intelligence products.
IBM Raises Price on Software Support; Shoves Customers Toward the Cloud
IBM is changing the terms of its ubiquitous Passport Advantage agreement to remove entitled discounts on over 5,000 on-premises software products, resulting in an immediate price increase for IBM Software & Support (S&S) across its vast customer landscape.
Organizations Report Higher Satisfaction When Switching to Software With an Info-Tech Award
Thinking about choosing a new software vendor but don't know where to start? Narrow down your shortlist by focusing on software that has received an Info-Tech Research Group award. New data from SoftwareReviews shows that organizations reported higher satisfaction when they switched to software that had received an Info-Tech award.
Bomgar & BMC Team Up to Speed Trouble-Ticket Resolution
For organizations that experience time-sensitive incidents that must be resolved in the most optimal and efficient manner, Bomgar (Beyond Trust) and BMC Software may have the solution. The two vendors have teamed up to address a reduction in the time it takes to resolve problematic tickets and assist in lessening the impact of cyber threats to which all organizations are subjected.
Azure Sentinel: What is it, What are the Four Key Security Fundamentals, and Why You Should Know About It
Microsoft’s cloud Security Incident Event Management (SIEM) solution leverages modern day enhancements such as Security Orchestration Automated Response (SOAR), Machine Learning (ML), and Artificial Intelligence (AI).
Rapid7 – Key Reasons Around Cloud-Native SIEM
In today’s world many security teams require a simplified holistic method to consolidate disparate log data, threat anomalies, and responses. Due to these pressured requirements, organizations across the world are adopting or considering cloud-native Security Information and Event Management (SIEM) solutions.
Global Security Information and Event Management Market Size Is Expected to Reach $6 Billion by 2026
KBV Research released its Global Security Information and Event Management (SIEM) Market Forecast report last month. In light of the recent COVID-19 pandemic, the SIEM market report highlights continued growth for the security solution and offers insights into how SIEM will continue to be essential for enterprises going forward.