Rout Intruders with All New VMware NSX+ Network Detection and Response Service - Gestalt IT

In this Tech Field Day Extra article from VMware Explore, Sulagna Saha discussed VMare's NSX+ Network Detection and Response Service. Communication gaps between teams and a prevailing lack of context in security policies, further increase vulnerabilities within the system in the form of operational inefficiency and unaddressed threat vectors. Thanks to its correlating capability, NSX+ NDR can visibly reduce the alert overload. From the thousands of events it absorbs from IDPS and NAT solutions in the network, it prioritizes notifications based on relevance and category, and shares the results with the SIEM solutions. SOCs can export both atomic and campaign events to the SIEM solutions for threat investigation and troubleshooting. This not only makes scoping and hunting threats surprisingly simple, but also reduces the volume of alerts, improves accuracy and minimizes false positives.