Technology Record - Issue 27: Winter 2022

63 Cloud-native solutions overcome all these issues. Many of the security products that enterprises have been buying in recent years are already natively available in the cloud and include artificial intelligence tools or algorithms. Microsoft, for example, deploys advanced algorithmic capabilities within Defender and other suites. Organisations can leverage solutions that feature AI models to proactively address security risks to expedite their detection and response capabilities. Like other public cloud providers, Microsoft also has cost-effective, cloud-native solutions for handling larger data volumes and security incident and event management (SIEM) platforms. All-around protection The security industry has coined a new term: extended detection and response (XDR). It describes a platform that can aggregate security information from multiple sources, including the end point, cloud and identify management systems, to help teams isolate and respond to threats faster. A managed detection and response (MDR) service leveraging the Microsoft XDR platform, for example, helps companies to identify attacks via email, end points, identities and applications, enabling a timely response to reduce the impact of the attack. Deploying cloud-native XDR solutions also facilitates the automation of many labour-intensive tier one and two processes. This could include tasks such as patching and testing enterprise systems, deploying infrastructure improvements, addressing support tickets from employees and generating reports for senior management about the organisation’s security posture. MDR providers like CyberProof employ threat hunters to proactively evaluate an enterprise’s network to detect risks and develop security baselines