While working with SOC teams over the past 5 years to help them set up their SIEMs, I’ve watched a company’s desire to do as much as possible via APIs grow quickly. During the first few calls with a new customer, one of the questions I would undoubtedly get is, “Can we do all of this via the API as well?”
We’re all seeing the market buzz
Extended Detection and Response(XDR) is getting a lot of attention these days. Given two, leading endpoint detection and response (EDR) vendors, SentinelOne and Crowdstrike, recently announced acquisitions of Scaylr and Humio, respectively, it seems more vendors are making the daily pivot to enter the XDR market.