Since deploying Red Canary, the retailer has already seen several benefits from Active Remediation. One particular high note came after Red Canary detected a threat mid-2022.
Without Red Canary, their IT operations manager admitted that containing and remediating the threat would not have been an easy task—it could have taken a couple of days for their team, who were already operating at 100 percent capacity. At that time, the team was also working on a high-level project. Pausing it and reallocating resources even for a short amount of time would’ve put the entire project in jeopardy and potentially cost the company hundreds of thousands of dollars. Instead, they went from detection to containment and remediation within one hour thanks to Active Remediation.
“By the time Red Canary followed the procedure of quarantine, remediate, and notify, I was already looking over the notes,” their IT operations manager recalled. “To know that something happened and that someone technical had eyes on it immediately, did their due diligence, went through our playbook, took care of the threat, and then told us about it, there’s a huge amount of value there.”
In addition to hands-on-keyboard response, some additional benefits of Red Canary MDR the retailer called out include:
- The user-friendly portal, which puts key information front and center.
- Morning snapshots and threat intelligence reports that communicate what’s happening in the cyber world in an easily digestible manner.
- Single pane of glass view that pulls in raw telemetry from their EDR tool and makes it easier to understand activity on any given endpoint.