FirstNet's EDR as a Service provides real-time, automated endpoint protection and incident response across various systems, including workstations, servers, POS, and OT systems. It offers a single integrated platform with flexible deployment options and a predictable operating cost. The solution includes a custom-built, kernel-level Next Generation Anti-Virus (NGAV) engine to prevent file-based malware infections. It is the only solution that detects and stops advanced attacks in real-time, even on compromised devices. With features such as vulnerability assessment, threat intelligence feeds, and automated incident response, FirstNet's EDR as a Service eliminates dwell time and provides comprehensive endpoint detection and response capabilities. The platform ensures data protection, system uptime, and business continuity while offering scalability, simplified management, and optional managed detection and response (MDR) services. Integration with the FortiNet Security Fabric enhances threat intelligence sharing and response actions. Additionally, the solution supports integration with SIEM platforms for threat analysis and forensic investigation.
FirstNet's Managed Detection and Response (MDR) Service is an add-on service to their EDR as a Service, focusing on monitoring and addressing alerts and suspicious threats detected by the EDR platform. The MDR team, consisting of threat experts, analyzes alerts, proactively hunts for threats, and takes necessary actions to protect customers based on their risk profile. The service includes activities such as malware analysis, memory analysis for malicious processes, identification of vulnerabilities and unwanted programs, environment tuning, and tactical containment options. The MDR team provides guidance for remediation steps, both tactical and strategic, and ensures timely response and communication with customers. They offer incident email notifications, escalation channels for inquiries, and environment assessments to provide insights into platform health, threat trends, and recommendations. The MDR service aims to deliver end-to-end security monitoring and support to enhance customers' overall security posture.