SafeGuard and Response includes elements from Secureworks and CrowdStrike, who are partnering on the offering. The four-level approach includes:
• CrowdStrike Falcon Prevent, which is an antivirus element priced at $20 to $30 per endpoint per year.
• CrowdStrike Falcon Prevent and Insight. This element of the package aims to stop malware. If malware does infect the target system, Falcon Prevent is designed to reduce time to detection. It’s priced at $40 to $50 per endpoint per year.
• Secureworks Managed Endpoint Protection. Organizations deal with multiple real threats and false positives. Working with CrowdStrike, this element of the platform helps organizations make sense of the blizzard of these alerts. This cloud-based managed service drills down to isolate what really is happening. It is priced at $60 to $70 per endpoint per year.
• Secureworks Incident Management Retainer. Mid-size companies often don’t have plans in place to deal with successful attacks. The highest element of the platform focuses on the dispatch of experts to help organizations battle those attacks. It costs $15,000 per year for a 40-hour “bucket” of time that can be divided between responses to incidents and remedial work aimed at reducing the organization’s vulnerability.
The platform can protect products from all endpoint vendors and will be sold by Dell and its channel partners beginning in March.
There are two strategic elements to the platform: One is that Dell considers mid-market security to be an underserved market. The other is that endpoints are particularly vulnerable. There are innumerable endpoints and it is virtually impossible to keep them all updated and patched, explained Brett Hansen, vice president and general manager of client software and security solutions for Dell.
The universe of endpoints is a chaotic mix of operating systems (and versions of each OS), firmware, and application. This ensures that a large number of vulnerable devices are always in the field. Dangers are exacerbated by the tendency to use unauthorized applications, many of which contain malware. “Endpoint [security] is a daunting challenge,” Hansen said.
Though some mid-market organizations have sophisticated security infrastructures, the lion’s share don’t have the personnel or expertise to handle the level of complexity that modern cybersecurity requires. Wendy Thomas, senior vice president of business and product strategy at Secureworks, told SDxCentral that an especially attractive element of the platform for many organizations is the ability to identify real problems.
“They have a tool and get a lot of detections, but the noise can be overwhelming,” Thomas said. “That’s why the next level of filtering and sophistication is even more important for this market segment.”
Analysts noted the new platform was aligned with needs in the marketplace.
“Combing CrowdStrike’s Falcon product with Dell Secureworks’ managed security services is well aligned with how customers want to procure and employ controls and services to protect their footprint of endpoint devices,” noted Doug Cahill, group director and senior analyst for Enterprise Strategy Group.
Roger Kay, founder and president of Endpoint Technologies Associates, was enamored with the package approach. “It’s comprehensive in terms of the elements and how they work together,” Kay said. “I don’t know how unique the capabilities themselves are, but to have them put together as a package is new or is a differentiator.”
This is the second significant endpoint announcement this week. On Monday, Symantec introduced managed endpoint and detection response (MEDR), enhanced EDR 4.0, and strengthened endpoint protection and hardening capabilities.