WatchGuard Technologies launches ThreatSync+ NDR, a Network Detection & Response solution with AI technology. The company also introduces WatchGuard Compliance Reporting.

WatchGuard Technologies introduces ThreatSync+ NDR, a network detection and response solution that uses AI to simplify complex security tasks. WatchGuard is following an industry trend where AI is increasingly being used to simplify and automate.

ThreatSync+ NDR is designed to provide improved detection and defense against cyberattacks, even when companies have limited access to IT resources. This product is the first in a new series of Advanced detection and response (XDR) solutions from WatchGuard.

According to WatchGuard, ThreatSync+ NDR detects threats that traditional security systems often miss. The security specialist cites ransomware and supply chain attacks as examples.

(Almost) like a SOC

The solution continuously analyzes network traffic for suspicious patterns and provides transparency. WatchGuard compares the result to the Security Operations Center (SOC) of large companies, even if this is perhaps somewhat simplistic. The key to a SOC is the permanent monitoring of the signals from an NDR solution.

WatchGuard highlights five core tasks of ThreatSync+ NDR:

• Detection and presentation of incidents: Suspicious activities are automatically correlated and presented as manageable incidents.
• Prioritization and risk assessments: Risk scores are automatically assigned to incidents, allowing security professionals to focus on the most critical threats.
• Advanced analytics: The AI ​​engine provides insights into incidents and presents them clearly on a dashboard.
• Integration: The solution integrates with the WatchGuard Cloud, enabling rapid deployment without the need for additional hardware.
• OpenXDR support: ThreatSync+ NDR supports the OpenXDR standard and integrates with WatchGuard Firebox and other compatible devices.

Compliance reporting

In addition to ThreatSync+ NDR, WatchGuard is also introducing Compliance Reporting. This solution generates automated reports to help organizations comply with laws such as NIS2 and standards such as ISO 27001:2022 and NIST CSF. According to WatchGuard, this eliminates the need for expensive governance, risk and compliance (GRC) products. Given the uncertainty that still exists today about the exact expectations in the context of NIS2, automation in this area is certainly welcome.