What is the purpose of the eSentire Agent?
The eSentire Agent is designed to provide visibility and telemetry on endpoints, such as Windows, Mac, and Linux machines. Its primary purpose is to support eSentire's Managed Detection and Response (MDR) services by monitoring logs and activities to detect and prevent potential threats. By gathering this information, the agent helps protect your assets against intrusions and allows our Security Operations Center (SOC) analysts to investigate any suspicious activity.
How does the Agent Dashboard work?
The Agent Dashboard provides clients with a centralized view of all eSentire Agents deployed in their networks. It displays key information such as the online/offline status, operating systems, and versions of the agents. Clients can also configure, uninstall, or isolate endpoints directly from the dashboard. Additionally, it allows for deeper insights into individual agents, including user activity and historical actions taken.
What happens when a threat is detected?
When the eSentire Agent detects a potential threat, it triggers an investigation by our SOC analysts. They assess the situation and, if necessary, escalate it to a threat case within the Insight Portal. Clients are notified via email and can view detailed information about the threat case, including evidence and recommended actions. The process is designed to ensure clear communication and effective response to mitigate any risks to the client's environment.
.png "QuattroOne")
Sign in with LinkedIn