What integrations would you like us to add?

What integrations would you like us to add:
Integration Poll 

We are transitioning from Early Access to General Availability at the end of November and will support the following 3rd party integrations by category.

NOTE: The Microsoft integrations are included with the MDR License at no additional charge. The table below includes the category these fall into.  If only using the Microsoft integration you do not require the additional category license.  A category license gives you access to all integrations in the category. 

Endpoint

Firewall

Email

Trend Micro - Apex Central 

Fortinet - FortiAnalyzer

Mimecast - Email Security Cloud Gateway

SentinelOne - Singularity endpoint 

Fortinet - FortiGate

Proofpoint - Targeted Attack Protection

Microsoft Defender for Endpoint

Cisco - Firepower

Microsoft Office 365 Security and Compliance

Cisco - Meraki

Microsoft Defender for O365

Palo Alto Networks - PAN-OS

Sonicwall - SonicOS

Check Point - Quantum Firewall

Network/Network Security/NDR)

Identity

Public Cloud security / CSPM

Darktrace

ManageEngine - ADAudit Plus

AWS Security Hub

Skyhigh Security - Secure Web Gateway

Cisco - Duo

AWS Cloud Trail

Thinkst Canary 

Okta

Orca Security

Microsoft Azure AD Identity Protection

Microsoft Defender for Cloud 

Microsoft Defender for Identity 

Microsoft Defender for Cloud Apps (CASB) 

At GA if you are in the Early Access Program than all integrations will continue to work through the end of the Early Access Program in mid December.  

In mid December all MDR customers will have access to the integrations available with the MDR Complete License (Endpoint, Microsoft 365, Microsoft Security Graph)  as well as the Sophos products you are licensed for.

Integrations in the Email, Firewall, Identity, Network and Public Cloud security categories will require a license for the Integration pack for the category they are in.

We will continue to add more integrations at a rapid pace and are looking for your input on integrations you would like us to add.  To facilitate understanding what you want we have a poll you can take to identify new integrations that are desired.

As new integrations become available they will be visible to all MDR customers as BETA integrations.  Beta integrations are under development and we encourage accounts to enable them so that we can receive telemetry from the 3rd party to confirm the information is sufficient for case generation and triage by the MDR operations team.  Once a BETA integration has been completed it will become available in the category it has been assigned. 

Please take the poll and identify any integrations you would need in your environment.

 Integration Poll 

Below is the list of those we have already heard requests for and if a security product is not on the list that you would desire please add it in the comments section so we are aware of the need.

Thanks

Karl

Parents Comment Children