Information security firm Trustwave has bolstered its threat monitoring, detection and response in Microsoft Azure has launched an advanced threat detection and response service for the cloud computing service.
Trustwave said in an announcement earlier this week that its Threat Detection and Response services for Azure integrates with Microsoft Azure Sentinel — a cloud-native security information and event management solution — and Microsoft Defender Advanced Threat Protection.
Data from customers’ devices and applications are collected and fed to Trustwave security analysts who inspect for malware, rogue code, behavioral anomalies and other indicators of cyber attacks.
Using the Microsoft Security Graph application programming interface, the firm ingests only data needed for efficient threat protection and to comply with data privacy restrictions, Trustwave said.
Aside from around-the-clock monitoring, Microsoft Defender Advanced Threat Protection clients also have access to an advanced option that immediately escalates a detected incident to a full-scale digital forensic investigation to eliminate threats from the network.
The service is administered through Trustwave’s cloud-native Fusion platform that unifies data from Azure, endpoints, networks and multi-cloud environments across an enterprise’s entire footprint with Trustwave’s data lake, threat intelligence and security specialists.
Trustwave said the integration brings three key benefits for Azure customers:
- Full threat visibility and centralized control for businesses with diverse security vendor technologies and multi-cloud environments
- Access to security expertise and global threat intelligence led by Trustwave SpiderLabs
- Consulting for deployment and optimization of Microsoft’s Azure Sentinel and Defender Advanced Threat Protection
In a statement, Senior Vice President of Managed Security Services Chris Schueler said detecting and responding to threats in the expanded attack surface of cloud and hybrid environments is becoming increasingly challenging.
The integration with Microsoft, he said, layers powerful threat detection and response onto Azure and leverages security experts to respond accordingly.
Senior Director of Azure Security at Microsoft Scott Woodgate called Trustwave an innovative MSSP.
“Trustwave’s strong threat detection and response expertise paired with Microsoft’s cloud native tools will enable customers to build a more proactive answer to incident response,” he said.