Risky Bulletin Sponsored: Corelight on where will NDRs go next
7 snips
Oct 5, 2025 Ashish Malpani, Head of Product Marketing at Corelight, dives deep into the evolving world of network detection and response (NDR). He predicts significant advancements in NDR to protect multi-cloud environments and enhance endpoint detection. Malpani emphasizes the importance of layered detection to reduce false positives and discusses how NDR can identify threats that bypass traditional cloud controls. He advocates for a robust security stack, highlighting the need for continuous evolution of detection strategies to stay ahead of cyber threats.
AI Snips
Chapters
Transcript
Episode notes
NDR Is Rebranding Older Network Monitoring
- The term NDR is relatively new, but network-based threat detection has existed for years under NSM and related tools.
- NDR consolidates modern vendors and visibility but builds on longstanding network security practices.
NDR Expands Into Cloud And Industrial Spaces
- NDR will grow beyond perimeter networks into cloud, ICS, OTA, and multi-cloud telemetry to broaden detection coverage.
- It aims to become a central detection capability complementing other security tools across environments.
NDR Complements Preventive Cloud Controls
- Preventive controls like WAF stop many threats, but some attacks bypass them and need post-breach cloud traffic analysis.
- NDR provides uniform telemetry across multi-cloud to detect threats that escaped perimeter defenses.