Trustwave Threat Detection and Response services for Microsoft Azure integrates with Microsoft Azure Sentinel, a cloud-native security information and event management (SIEM) solution and Microsoft Defender Advanced Threat Protection. Data from users, devices and applications are continuously collected and fed to Trustwave security analysts who inspect for malware, rogue code, behavioral anomalies and other indicators of malicious activity. Leveraging the Microsoft Security Graph application programming interface (API), Trustwave ingests only data that is needed for optimal efficiency and to abide with any data privacy restrictions.
In addition to 24x7 threat monitoring and alerts, an advanced option for Microsoft Defender Advanced Threat Protection clients immediately escalates a detected incident to a full scale digital forensic investigation and/or threat hunt initiating triage or active "seek and destroy" missions to purge adversaries or other dangers from environments.
"As enterprises continue to move operations to cloud and hybrid cloud environments, detecting and responding to threats has become increasingly challenging as the attack surface expands and the sheer amount of new security technologies to comprehend grows," said Chris Schueler, senior vice president of managed security services at Trustwave. "Our integration with Microsoft layers powerful threat detection and response capabilities onto Microsoft Azure and leverages elite security experts to analyze data flows, identify irregularities and jump into action when needed."
Trustwave Threat Detection and Response for Microsoft Azure is delivered through the Trustwave Fusion platform, a cloud-native platform that unifies data from Microsoft Azure, endpoints, networks and multi-cloud environments across an organization's entire footprint with the Trustwave data lake, actionable threat intelligence and an elite team of security specialists.
Key benefits for Microsoft Azure customers include:
"Microsoft welcomes the opportunity to partner with an innovative MSSP like Trustwave and build the future of intelligent security together," stated Scott Woodgate, Sr. Director, Azure Security, Microsoft. "Trustwave's strong threat detection and response expertise paired with Microsoft's cloud native tools will enable customers to build a more proactive answer to incident response."