Version: ProtectWise

ProtectWise is a cloud-delivered Network Detection and Response (NDR) platform. It provides a new utility model for enterprise security, delivering pervasive visibility, automated threat detection, and unlimited forensic exploration on-demand and entirely from the cloud.

Netsurion Open XDR integrates with ProtectWise to collects logs and creates detailed reports, alerts, dashboards, and categories. These attributes of Netsurion Open XDR helps user to view/receive the critical and relevant information regarding security, operations and compliance.

Reports contains a detailed summary of threat detected by ProtectWise in IP, URL, DNS, certificate, events and many more in column-value pair.

Alerts are triggered as soon as a high scored threat is received by Netsurion Open XDR for ProtectWise.

Dashboards is a graphical representation of all the activities happening in ProtectWise. These include threat category by threat level, threat by source IP, threat score for all log types and others.

These attributes or configurations of Netsurion Open XDR allows administrators to quickly take appropriate actions against any threat/adversaries trying to jeopardize an organization’s normal operation.

Netsurion Data Source Integration for ProtectWise allows you to monitor the following components:

  • Security – Threat Detected, IP reputation, DNS reputation, Certificate reputation, URL reputation, File reputation, Payload
  • Operation – Events

Once ProtectWise is configured to deliver events to Netsurion Open XDR; alerts, dashboards and reports can be configured into Netsurion Open XDR.

To take advantage of this data source integration and to learn more about alerts, reports, and dashboards, contact your Technical Account Manager (TAM). If you are not currently a Netsurion customer or partner, contact us to learn more.