Overview

Orange Cyberdefense reports 50 billion security events through its global CyberSOCs daily. The challenge with detection is there isn’t one type of technology that solves the complete set of detection requirements. Detection must be conducted across multiple sources including log data, network data and endpoint data. Threat activities occurring outside of your infrastructure also need to be detected.

Orange Cyberdefense offers a complete Managed Threat Detection portfolio, covering not only the SOC triad of log, network and endpoint, but also detection of threats on the Open, Deep and Dark Web. We help businesses start with the most relevant monitoring for current needs, and then expand as required.

Orange Cyberdefense has developed its own ‘Threat Detection Framework’, helping customers visualize what deployment options looks like. Explicitly modelled to their environment and the type of data they provide, we work with customers to set target visibility across critical phases of the kill chain and look at ways to help achieve them.

This framework aims to:
– Ensure customers understand our coverage and where we may lack visibility;
– Identify opportunities to increase visibility, adding additional logs, placing new network sensors in networks or rolling out EDR agents;
– Visualize and model the impact of adding new services or encourage business stakeholders to provide additional log data
– The framework is developed and actively used by 11 CyberSOCs distributed worldwide, and sales and services support in 160 countries. We offer global protection with local expertise.

Once your Managed Threat Detection service is in place, this can be combined with response services that you need to compliment your own abilities. Our cyber security incident response team (CSIRT) is an elite pan-European team can be deployed to provide expert consulting, incident management and technical advice to help handle security incidents end-to-end, from detection to closure.