Technology Reseller v59

technologyreseller.co.uk 27 and SIEM in place. While cybersecurity is relevant to all vertical markets, we tend to sell more to customers in the finance, critical infrastructure, government and high technology sectors. Corelight has a strong base of resellers around the world that help us to identify opportunities, assist with the sales process and ultimately support the customer. TR: What were the challenges Corelight faced in gaining a foothold in the market and how did you overcome them? ME: Outside the classic start-up challenges of scale, funding and focus, our primary challenge initially was driving market awareness and acceptance. NDR was not a clearly defined cybersecurity category until a few years ago and it was difficult for customers to secure budget or easily understand where we fit in their infrastructure. This has changed more recently thanks to Gartner’s SOC Triad, which clearly shows NDR, EDR and SIEM as core technologies. Our own positioning of the platform – as one that is based on the design patterns of elite defenders – has also helped. Another core challenge is the sheer number of potential use cases that the platform has – dozens, if not hundreds. That’s good for a customer once they’ve installed it, but can be tricky to market. We have addressed this in the past 18 months with clearer messaging that highlights the value of an evidence-based approach to threat detection and the four critical value pillars: visibility, detection/analytics, investigations and threat hunting. TR: How has Corelight grown and where are you having most success? ME: We continue to have most success in verticals that are highly risk-averse and run mission-critical applications, including federal government, critical infrastructure, finance, healthcare and technology companies. Our growth over the past few years has been tremendous, resulting in multiple funding rounds and strong interest from the investment community. Corelight had significant growth even through the pandemic years and this has been fuelled not only by new logo acquisition but also by customer expansions and renewals. TR: How has your solution evolved since it was launched and how do you expect it to develop in the future? ME: The company is not yet 10 years old but has already evolved the platform significantly. We’ve integrated open source Suricata IDS technology, so that alerts and detections are immediately contextualised and prioritised, and we’ve enhanced the platform with Smart PCAP technology, which allows customers to retrieve only the packets they need, versus full packet capture. Corelight has also launched a SaaS-based offering, as well as delivering multiple options for non-SaaS, across physical, virtual and cloud. Looking ahead, we will continue to invest in areas that expand what we can detect and how – particularly in the field of AI and machine learning – and we’ll look to increase visibility further into the cloud and IoT/OT environments, as organisations double down on these technologies to drive a new wave of digital transformation. TR: How do you expect the cybersecurity market to evolve? ME: The biggest trend right now is consolidation. Customers have too many tools and are finding they lack a single source of truth when it comes to data/evidence. This is a challenge from a skills perspective. With SOC analysts in high demand and teams stretched to the limit, organisations are finding that they can’t keep their SecOps practitioners trained on all the tools at their disposal. Also, having more tools does not necessarily lead to better coverage; organisations are still finding gaps in their security. Another emerging trend is the growing popularity of threat hunting. More organisations are getting proactive about detection so they can enhance the cyber-resilience of their infrastructure. They’ll need every tool and tactic at their disposal, as the bad guys keep innovating and attack surfaces continue to expand. IoT and OT security is a big emerging area, with the network edge a prime candidate for attack. https://corelight.com How can remote support software enhance a cybersecurity offering? By improving the ability to monitor and respond to IT management threats, Remote Support software can significantly enhance the cybersecurity offerings of MSPs. Cybersecurity is becoming increasingly important because businesses are dependent on technology, and as technology evolve, the risks become greater. This is where IT pros and MSPs can make a difference. Remote Support software can be a valuable tool in enhancing this offering by providing effective assistance to customers. Some reasons to use this kind of software to enrich your services: l enhance accessibility: where on-site support is not feasible, such as during an emergency or when customers are located in remote areas l boost response times: respond to requests quickly, as you can access systems and troubleshoot issues remotely l increase efficiency: handling multiple support sessions simultaneously and automating routine tasks l improve security: centrally monitoring networks and devices in real-time, so that MSPs can be alerted when issues arise By using tools like Supremo for Remote Desktop and RMM, it is possible to facilitate the support and maintenance of IT systems. How does this happen? Using a centralized tool, the security of corporate assets and users’ devices is efficiently handled. Supremo allows unique control over Remote Monitoring and Management and also Remote Access activities, delivering a large set of features for IT pros and MSPs. The download is free and enables unlimited installations and unlimited devices and endpoints to be controlled. Discover more at @NanosystemsSrl Supremo Remote Desktop www.supremocontrol.com @Nanosystems @nanosystems3034

RkJQdWJsaXNoZXIy NDUxNDM=