Platform Introduction

Our solution is provided as an end-to-end cybersecurity suite, offering SIEM, Network Detection and Response, Endpoint Visibility, Threat Intelligence, and Vulnerability Management, all delivered through an integrated SIEM/XDR platform.

The solution is implemented as a fully supported SaaS platform.

The platform provides comprehensive enterprise coverage, integrating all available security data, including data directly residing within your network and on your endpoints, as well as external data such as cloud workloads, SaaS applications, Dark Web breaches, compromised credentials, external vulnerabilities, and weaknesses and exposures related to third-party organizations in your supply chain.

The platform is delivered as a cloud-hosted service, with multiple data collection sensors deployed within the customer environment. At a high level, the platform architecture can be presented as follows:

ThreatDefence Platform Overview Diagram

The main building blocks of the solution include:

Cloud SIEM/XDR Platform
Endpoint visibility and DFIR agents
Network Detection and Response sensors
Syslog collectors
Cloud/API/syslog integrations