Read Reviews of the Top Threat Detection and Response Platforms

What is Threat Detection and Response?

The most simple definition of a Threat Detection and Response solution is that they monitor an organization's network activity and data for signs of threats, like intrusions, and then work out what kind of response is needed to remove this threat. The purpose of this is to automate the process of finding and solving security breaches that have made it through other security measures such as a network firewall. This involves using analytical tools to scan large data sets to find anomalies which could be potential threats. The solution will then automatically remediate the threat or guide the organization on the remediation process.

These solutions can be deployed as software which is deployed on Endpoints which connects back to a central management console for analytics and monitoring. This allows administrators to monitor their networks, infrastructure and Endpoints and resolve and security risks like malware, or intrusions in the system. They can also alert companies when devices are being used for unauthorized purposes, giving them companies a level of protection from insider threats.

The key features of a Threat Detection and Incident Response solution are:

  • They scan IT networks and data for threats, intrusions and malware.
  • They provide network monitoring and reporting within a management console.
  • They automatically alert administrators of suspicious activity and threats.
  • They block threats or help to guide organizations on how to remediate threats.

Compare Threat Detection and Response

Vendor

Description

Compare

Compare
Vectra® uses artificial intelligence to automate real-time cyber attack detection and response – from network users and IoT devices to data centers and the cloud. More information...
Compare
Attivo Networks offers a deception based threat deception and response platform. It servers, decoys, deception a endpoint deception suite to create a comprehensive early detection and active defence against cyber threats. More information...
Compare
Awake Security offers threat detection and response which continuously monitors a network environment, protects data, senses abnormalities and threats and responds if necessary, in real time. More information...
Compare
Carbon Black ThreatHunter allows businesses to detect and respond to advanced attacks with unfiltered visibility. More information...
Compare
D3 Security offers incident response and incident management solutions. It allows companies orchestrate their security processes with coordination across dozens of tools to eliminate all workflow silos. More information...
Compare
Deep Secure offers an extra level of threat protection with incident response for enterprises. This platform aims to eliminates content threats such as Ransomware, Fileless malware, Stegware, Phishing, Office malware & PDF malware. It integrates with an enterprises’ exisiting technologies like their secure web gateways and email networks for strong incident response. More information...
Compare
Demisto describes itself as the connecting fabric for you security infrastructure and teams. It offers complete incident management, intelligent automation and orchestration and interactive investigation. More information...
Compare
IBM Resilient is a leading platform for orchestrating and automating incident response processes. It quickly and easily integrates with existing security and it investments. More information...
Compare
Insight IDR helps businesses to unify their business data, detect breaches, and respond to businesses with ease. More information...
Compare
Sumo Logic offers businesses a platform to confidently detect to threats and respond confidently. It allows you to detect threats by monitoring key security metrics and indicators of compromise More information...
Compare
Swimlane Security Orchestration, Automation and Response (SOAR) helps organisations to manage alerts more efficiently by automating the incident response process. More information...
Compare
Symantec offer an Incident Response solution that allows organizations to quickly return to normal operations when they have suffered an attack. More information...
4.5

Vectra Cognito

Vectra® uses artificial intelligence to automate real-time cyber attack detection and response – from network users and IoT devices to data centers and the cloud. More information...

Attivo Networks ThreatDefend

Attivo Networks offers a deception based threat deception and response platform. It servers, decoys, deception a endpoint deception suite to create a comprehensive early detection and active defence against cyber threats. More information...

Awake Security

Awake Security offers threat detection and response which continuously monitors a network environment, protects data, senses abnormalities and threats and responds if necessary, in real time. More information...

Carbon Black ThreatHunter

Carbon Black ThreatHunter allows businesses to detect and respond to advanced attacks with unfiltered visibility. More information...

D3 SOAR

D3 Security offers incident response and incident management solutions. It allows companies orchestrate their security processes with coordination across dozens of tools to eliminate all workflow silos. More information...

Deep Secure Content Threat Removal

Deep Secure offers an extra level of threat protection with incident response for enterprises. This platform aims to eliminates content threats such as Ransomware, Fileless malware, Stegware, Phishing, Office malware & PDF malware. It integrates with an enterprises’ exisiting technologies like their secure web gateways and email networks for strong incident response. More information...

Demisto

Demisto describes itself as the connecting fabric for you security infrastructure and teams. It offers complete incident management, intelligent automation and orchestration and interactive investigation. More information...

IBM Resilient Incident Response

IBM Resilient is a leading platform for orchestrating and automating incident response processes. It quickly and easily integrates with existing security and it investments. More information...

Insight IDR

Insight IDR helps businesses to unify their business data, detect breaches, and respond to businesses with ease. More information...

Sumo Logic Security Analytics

Sumo Logic offers businesses a platform to confidently detect to threats and respond confidently. It allows you to detect threats by monitoring key security metrics and indicators of compromise More information...

Swimlane SOAR

Swimlane Security Orchestration, Automation and Response (SOAR) helps organisations to manage alerts more efficiently by automating the incident response process. More information...

Symantec Incident Response

Symantec offer an Incident Response solution that allows organizations to quickly return to normal operations when they have suffered an attack. More information...

Compare Threat Detection and Response products.

Compare Products
Compare