Secureworks

Additional features

Secureworks Taegis Platform

A cloud-native, open XDR (Extended Detection and Response) security platform designed to unify security data and operations across diverse IT environments.

Taegis MDR (Managed Detection and Response)

A comprehensive service combining the Taegis platform with human security expertise for 24/7 threat prevention, detection, investigation, and response.

Taegis XDR

The core platform providing superior detection and response by ingesting and correlating telemetry from endpoints, networks, cloud, email, and identity systems.

Taegis MDR Plus

An advanced MDR offering that includes weekly intelligence-based threat hunts, professional services (like annual health checks), and custom use case development.

Taegis MDR Enhanced

Provides higher-touch threat analysis, orchestrated response, a designated 24/7 security POD, phishing investigations, and governance and advisory support.

Taegis MDR for OT

Specialized MDR designed to defend both IT and Operational Technology (OT) environments, with OT-focused experts and integrations with leading OT toolsets.

Taegis NDR (Network Detection and Response)

Focuses on preventing, detecting, and responding to threats that manifest on the network layer.

Taegis IDR (Identity Threat Detection and Response)

Rapidly uncovers and helps mitigate risks related to compromised user identities and accounts.

Taegis VDR (Vulnerability Detection and Response)

Automates vulnerability management and prioritizes the riskiest security gaps for remediation based on context.

Prevention, Detection, and Response from One Console

Centralizes all security functions within a single unified interface for streamlined operations.

Comprehensive Telemetry Collection

Gathers data from a wide array of sources including endpoints, networks, cloud environments, applications, email, and identity systems, ensuring broad visibility.

Open Ecosystem & Integrations

Designed to seamlessly integrate with hundreds of existing third-party security tools and future investments, maximizing ROI and avoiding vendor lock-in.

AI-Powered Analytics

Continuously leverages artificial intelligence and machine learning to improve existing detection capabilities and enable new ones for precise threat identification.

Machine and Deep Learning

Applies advanced analytical models to telemetry and events, enriched with threat intelligence, to generate high-fidelity and actionable alerts.

Automated Countermeasures & Playbooks

Includes thousands of built-in automated responses and single-click actions to accelerate incident handling and reduce dwell time.

Threat Intelligence Integration

Continuously enriched by comprehensive and curated threat intelligence from the Secureworks Counter Threat Unit (CTU) and other sources.

Secureworks Counter Threat Unit (CTU)

An elite team of over 100 threat researchers who actively monitor over 175 threat groups, analyze emerging threats, and feed intelligence into the platform.

MITRE ATT&CK Coverage

Offers high coverage (over 98%) across most categories of the MITRE ATT&CK framework, mapping detections to known adversary tactics and techniques.

Collaborative Investigations

The platform is built to facilitate seamless collaboration between customer security teams and Secureworks analysts on investigations.

Ask an Expert Feature

Provides direct access to Secureworks security analysts via chat within 90 seconds from directly within the Taegis console.

Single-Pane-of-Glass Visibility

Unifies visibility across the entire IT ecosystem, including hybrid environments, for a holistic view of the security posture.

Flexible Search & Reporting

Allows security analysts to quickly search through data, assemble relevant information, and generate customizable reports.

Data Retention

Includes 12 months of rolling data retention for all log data as a standard, with options for extended retention.

Taegis Endpoint Agent (EDR)

A proprietary endpoint agent for near real-time telemetry capture and analysis, supporting Windows, macOS, and Linux, with improved system impact.

Security Operations Expertise Built-in

The platform incorporates the deep operational expertise from Secureworks' history of running SOCs for thousands of customers.

Compliance Support

Helps organizations meet various regulatory requirements (e.g., CMMC, DFARS, DORA, GDPR, HIPAA, ISO 27001, PCI DSS) by providing necessary data and reports.

Consulting Services

Offers expert-led services including risk assessments, security preparedness planning, and resiliency testing.

Professional Services

Provides support for Taegis onboarding and ongoing steady-state service management.

Emergency Incident Response (EIR)

Offers accredited incident response services for active breaches, including a dedicated hotline for rapid assistance.

Threat Hunting Services

Proactive hunting for hidden or dormant threats across the environment that automated defenses might miss.

Ransomware Readiness Assessment

Blends security expertise with current research to assess an organization's defense and readiness against ransomware.

Penetration Testing

Mimics real-world adversaries to help find security blind spots before threat actors exploit them.

Application Security Testing

Provides specialized expertise for thorough security evaluations of web applications, mobile applications, and web services.

Custom Use Case Support

For Taegis MDR Plus and Enhanced, allows for the development of custom detection and response rules tailored to specific organizational needs.

Quarterly Security Posture Reviews

Regular reviews to assess the overall security posture and provide recommendations for continuous improvement.

Integrated Log Management

Provides predictable, cost-effective pricing with flexible data retention options to amplify alert investigations, threat hunting, and reporting.