Security News > 2024 > July > True Protection or False Promise? The Ultimate ITDR Shortlisting Guide

What questions to ask:# Does the ITDR also cover non-human identities, such as Active Directory service accounts? Can the ITDR analyze the full authentication trail of users, across on-prem resources, cloud workloads and SaaS apps? Would the ITDR detect malicious access over command line access tools such as PsExec or PowerShell? Why is it important?#.

What questions to ask:# Does the ITDR solution integrate directly with on-prem and cloud Identity Providers to analyze authentications as they happen? Does the ITDR query the IDP to detect changes in account configuration? Why is it important?#.

What questions to ask:# Can the ITDR solution detect anomalies in the authentication protocol? Does the ITDR solution profile users' standard behavior to detect access to resources that were never accessed before? Does the ITDR solution analyze access patterns that are associated with lateral movement?

Need an ITDR solution to secure the identity attack surface of your on-prem and cloud environments? Learn how Silverfort ITDR works and request a demo to see how we can address your specific needs.

What questions to ask:# Can the ITDR follow up detection of suspicious access by triggering a step-up verification from an MFA solution? Can the ITDR follow up on the detection of suspicious access by instructing the Identity Provider to block access altogether? Why is it important?#.

What questions to ask:# Can the ITDR solution send the XDR user risk signals and import risk signals on processes and machines? Does the ITDR share its security findings with the SIEM in place? Can the ITDR's detection of malicious user access trigger SOAR playbook on the user and the resources it's logged in to?

News URL

https://thehackernews.com/2024/07/true-protection-or-false-promise.html