Integration with Microsoft Defender Advanced Threat Protection (ATP) Further Extends Vectra Automated Enforcement Capabilities to Enable SOCs to Stop Ongoing Attacks in Real-time.
Vectra AI, a leader in network threat detection and response (NDR), today announced expanded response capabilities for its flagship product, Cognito, and its Lockdown feature, made possible by integrating with Microsoft Defender Advanced Threat Protection (ATP). This builds on top of the automated identity-based enforcement actions in Vectra Cognito, known as Account Lockdown. This deep new product integration with Microsoft Defender ATP enables Cognito to deliver well-coordinated instantaneous responses directly on the device-level. Giving customers the ability to block and isolate attackers, not resources, will significantly reduce the dwell times that ultimately drive risk for the business without disrupting regular operation.
The technology and procedures that are the foundation of security enforcement are based on the quality and volume of security anomalies surfaced by an organization. It is, therefore, critical to avoid false positive alerts, which quickly lead to alert fatigue and degraded efficiency
