Network Detection and Response (NDR) tools are a key part of any organization’s cybersecurity stack. They analyze network traffic and logs to identify threat actors before they can cause significant damage.
According to the GigaOm report, identifying the best NDR solutions is of growing importance in cyber defense:
“NDR solutions are experiencing increased adoption as organizations look for new ways to enhance their cybersecurity posture and address the limitations of traditional security tools like firewalls, IDS/IPS, and SIEM solutions.”
GigaOm’s innovative approach to assessing the field of NDR tools is centered around a radar chart design. The four axes of Maturity, Innovation, Feature Play, and Platform Play allow comparison of the strengths of each solution, at a glance.
For the second consecutive year, Lumu Defender was named a leader and outperformer in the GigaOm Radar Report on the best NDR solutions.
Recognition for the Best NDR Solutions
Industry reports from trusted expert sources, such as GigaOm and Forrester, give recognition and visibility to the industry and the ability to compare and contrast top tier solutions available.
GigaOm aims to produce practical, actionable, and strategic advice to empower enterprises with a solid understanding of the constantly changing IT panorama.
Since its inception last year, 2023, the GigaOm Radar for Network Detection and Response has highlighted Lumu as a market leader and outperformer.
What Makes Lumu a Top NDR Solution?
The GigaOm report is divided into three criteria:
- Key features, the backbone of the product.
- Emerging features, showing innovation.
- Business criteria, influencing buyers’ decisions.
Where did Lumu stand out in the choice for best NDR solution?
Key Features
Under the first criteria, GigaOm judged Lumu Defender as a five-star product for several key features, including:
Intelligent anomaly detection | Correlating anomalies and alerts across the network, providing contextualized behavior analysis. |
Integrated flow data: | Enabling the ingestion and analysis of network flow information. |
Metadata threat detection | Using Machine Learning (ML) to analyze data, network traffic, and user activities to identify potential cyberthreats. |
Automated response: | Enabling the system to take immediate action upon identifying potential threats or compromises on the network. |
GigaOm highlighted Lumu Defender’s strengths as an NDR solution:
“Lumu’s patent-pending Illumination Process combines known threat intelligence, anomaly detection using AI/ML models, and deep correlation analysis to precisely identify compromises with high accuracy and low false positives.”
Emerging Features
Under its criteria for emerging features, Lumu was selected as the best of the group, including top marks for:
Zero-network footprint | Monitoring and analyzing network traffic metadata without deploying any physical sensors or components on the network itself. |
Core network integrations | Seamless and automated connectivity with all network devices and applications. |
Generative/predictive AI | Enhancing the analysis and anticipation of network threats. |
Automated response playbooks | Providing a structured, predefined set of actions for threat detection and response. |
GigaOm also praised Lumu’s Playback feature:
“The Playback feature enables retrospective threat hunting, continuously storing network metadata to allow customers to see when they first made contact with a domain or IP that later became malicious.”
Business Criteria
Finally, Lumu was selected amongst the top NDR choices in GigaOm’s business criteria. GigaOm particularly highlighted:
Configurability | Enabling organizations to align their security posture with their unique risk tolerance and compliance requirements. |
Interoperability | Seamlessly integrating with existing network and security infrastructures. |
Manageability | The ability to centrally control the entire security lifecycle, including configuration, management, scaling, and upgrades, through a single, unified interface. |
Observability | Deep, easily maintainable visibility into the network, enabling the identification and resolution of security issues. |
Why Do Customers Choose Lumu?
Lumu’s strengths, highlighted by GigaOm in their report, have also been echoed first hand by several users of the product.
Scott Wilson, Information Security Officer for Lehigh County, Pennsylvania, highlighted the advantages of Lumu’s automated response and integrations:
“The automated response - and the discovery of the unknown - has been priceless to us. Lumu has done a good job of integrating with other tools in our stack, giving not only other tools a return on investment, but also Lumu too.”
Joe MacNichol, IT Director at the Philadelphia Convention and Visitors Bureau says that the Manageability and Observability factor is hugely important to him:
“Lumu dashboard’s simple to use - it’s clean, it’s comprehensive, it gives you great insight and information about the threat. You can really dig deep into the information that Lumu gives you in the portal.”
Eduardo E. Schunk, CISO of Gupo Arcor, loved the ease of set-up of Lumu’s Zero-network footprint and Interoperability:
“The implementation process was very fast - very easy. We were able to deploy Lumu quickly and immediately it bore results. We found it very valuable how easily it could be integrated and deployed, and how easy it was to use.”
Read the Full GigaOm Radar Report
If you would like to read the full report to understand more about the best NDR Solutions in the marketplace, you can download GigaOm Radar for Network Detection and Response 2024. In the complete report, you will find more information and details about NDR solutions available and why Lumu was chosen as a leader in the field.