Darktrace in action, does the job well!

By | January 19, 2021

#Darktrace in action, does the job well! A great solution to supercharge your Cyber threat Landscape in light of the SolarWinds Orion attack. 

Darktrace’s Immune System, applies AI to the cyber defense challenges for the first time, and has proven itself successful in detecting cyber-threats that existing, legacy systems cannot.  

However, Darktrace alone is not enough in my opinion, you need to complement it with a good Modern NAC such as #ForeScout CounterACT. These two powerful security solutions cohabit in your environment you get pure good fire. 

I know a lot of BIGGER enterprises like the Universities, Banks, Financial Services, Health Care Providers, Government Departments, Telecoms etc might already have Cisco technologies in-place; from the Switches, Wireless Controllers, Access Points and more so they might have Cisco Secure ISE which you could argue that it is a NAC and it does exactly the same, which enables a dynamic and automated approach to policy enforcement that simplifies the delivery of highly secure networks.

Very true,  both Cisco ISE and ForecScout NAC possibly serve similar purposes, personally I would always pick ForeScout as my weapon of choice whenever I step into battleground against the cyber kingpins.  With ForeScout you gain true visibility of all connected devices on your network within hours of deployment, and policy-based controls are often functional immediately. 

NB: What I like most with these two solutions (Darktrace and ForeScout) deployed together under one roof, is that when Darktrace discover an rogue infected device I get notified instantly, and when I investigate the physical location of the misbehaving device down to a port on switch, ForeScout narrows it down for me nicely and clearly. Also keeping in mind that your policy-based controls could be configured such that it isolates or quarantines any rogue devices.

Should you need further engagement or require a POV (proof of value)/POC (proof of concept) team to rollout these technologies in your environment, kindly feel free to DM me.