Technical Specifications
Sophos Identity Threat Detection and Response - 1-9 users - 1year License - ITDR0U12AANCAA
Sophos Identity Threat Detection and Response (ITDR) protects against identity-based attacks by continuously monitoring for risks, misconfigurations, and compromised credentials in Microsoft Entra ID and hybrid environments.
Key Detection Capabilities
Sophos ITDR delivers full coverage of MITRE ATT&CK Credential Access techniques, including kerberoasting, privilege escalation, account takeover, brute force, and lateral movement. It performs 80+ cloud identity posture checks to uncover misconfigurations, dormant accounts, MFA gaps, and leaked credentials via dark web intelligence and UEBA for anomalous activity like impossible travel.
-
Identity catalog for complete visibility across all identities.
-
Prioritized dashboard of risks, including dark web exposures.
-
AI-driven detections for sophisticated threats.
Automated Response & Integration
Response playbooks enable instant actions: account locks, password resets, MFA refresh, and session revocation. Fully integrated with Sophos XDR and MDR, high-risk alerts auto-escalate for 24/7 expert remediation, reducing MTTD/MTTR.