At the heart of the new Trend Micro Vision One platform is Extended Detection and Response (XDR). New features ensure that security teams can detect more incidents and respond faster.

Regardless of whether companies have their own Security Operations Center (SOC) or whether an overburdened IT security team takes on SOC tasks, they are confronted with covert, cutting-edge threat scenarios on a daily basis. They also struggle with siloed tools and alerts that are difficult to contextualize.

Launched in 2019, Trend Micro 's XDR solution helps organizations identify and mitigate cyber risks by correlating alerts across the entire IT environment. With Vision One, even more complex security challenges can be solved thanks to an enhanced XDR solution, new risk visibility, new third-party integrations and simplified threat response across all security layers.

Vision One also allows less experienced employees to operate at a higher level. This enables companies to increase their efficiency. Thanks to the new platform, critical threat patterns and complex attacks are detected and security incidents are analyzed more quickly. Vision One helps to understand the overall security situation and trends and to proactively identify and assess potential risks.

According to Gartner, Innovation Insight for Extended Detection and Response, from March 2020, two of the biggest challenges companies face are the skills shortage and creating resources for a security operation that builds and maintains an effective defense and also provides capacity for rapid detection and response. According to the analysts, many companies are overwhelmed by the interaction of these two problems.

Vision One offers the following advantages as a holistic threat defense platform:

• Transparency and threat intelligence: With the help of cross-layer detection models and risk transparency - supported by the findings of Trend Micro Research - companies can identify complex attacks and specific security risks. Siloed solutions are often unable to do this. In the future, these will be expanded to include new insights into the use of SaaS applications, their risk content and long-term trends.
  
  
• Specially developed sensors: Native integration with Trend Micro solutions across critical security layers.
  
• Integration with existing infrastructure : Out-of-the-box API integrations with existing third-party solutions to complement workflows.
  
  
• Easy management: Instead of a series of individual responses, flexible security policy customization and response management across security layers can be controlled from a central console.

In addition to Trend Micro's multi-layered security approach, customers can easily connect the new platform with other security technologies such as third-party endpoint security platforms as well as SIEM (Security Information and Event Management) and SOAR (Security Orchestration, Automation and Response) solutions. This enables new integrations with Fortinet, Microsoft Sentinel and Splunk, for example. Customers who use the new platform as early adopters benefit from the development opportunities that arise beyond integration with SIEM and SOAR. Examples of this include firewall and ticketing solutions, as well as identity and access management.