What is TIARA & MDR?
TIARA is a turnkey service, including Sangfor HW, SW and Services, that helps customers quickly understand it current threat posture in four weeks.
  • Assessment: TIARA is a preliminary lightweight security posture assessment service which helps customers to determine their current threat posture of their complete network in short period of time.
  • Recommendation: TIARA also provides recommendations; improvement plans and remediation assistance in improving security posture into next level.

MDR is an ongoing service to help customers conducting comprehensive threat analysis and asset identification, and effectiveness and efficiency improves daily security operations and security controls, improving the overall security posture and increase the maturity in organization security operations.
  • Root-cause analysis: Sangfor security experts conducts root cause analysis and provide long-term improvement while most of other security operation just focus on event by event remediation methods.
  • Recommendation:  Sangfor security expert have rich experience in different industry or scenario and handling similar issue in other similar organization.
What’s Keeping CISO’s Up?
TIARA and MDR Helps CISO’s…
  • Help customers who lack on-site security experts to identify root causes of attacks and provides a long-term improvement plan, instead of focusing on individual remediation methods.
  • Provide Business Impact Analysis (BIA) to help management understand the importance of asset prioritization and the business impacts should assets being compromised.
  • Provide lightweight network risk assessment and a suggested course of action to achieve risk acceptance, avoidance, mitigation and transference.
  • Correlate security events and identify potential threats before they morph into security incidents.
  • Deliver a rich security protection experience for any industry or enterprise dealing with the potential of devastating security breaches.
  • Evaluate the efficiency and effectiveness of existing security practices and provide suggestions on how to improve them.
Value to CISOs
  • Credible assessment of your current security posture delivered by independent and certified consultants with unbiased opinion.
  • Significantly improve your current security posture by addressing misconfiguration and or to deploy additional security controls. 
  • Improve business continuity and achieve compliance while minimize legal issues.
  • Improve security benchmark among peers. 
  • Significantly improve the productivity of security operation with minimum investment. 
TIARA Case Study
Customer Background: In 2018 a mid-sized financial services company, serving the investment needs of large enterprises, SOEs, banks and insurance companies, discovered that two of its virtual servers were infected with 2 different types of ransomware. Sangfor deployed their Endpoint Secure and Cyber Command solutions.

Existing Security Protection:
  • Perimeter Gateways
  • Endpoint Protection
Pitfalls of the Traditional Approach:
  • Limited Detection: Traditional FW and AV are limited to known attacks.
  • Narrow Scope: FW blind to internal activities & AV limited to managed endpoints.
  • Lack of Security Operations: Protection available without response capabilities.
  • Wide Open: FW is designed to open doors to apps & partners.
1) Customer IT was reported two incidents of ransomware, unsure if they had more, IT called in TIARA.

2) A week after Cyber Command was deployed, TIARA uncovered hundreds of servers
infiltrated with mining malware, among several other security issues.

Sangfor Helps Customers to Improve Its Security Control
Instead of providing event-based remediation methods, Sangfor’s security consultant perform analysis on all security events discovered. After events correlation and diagnosis, the sources of problems and the root causes were identified. Threat Analysis Report (TAR) which includes business impact, security gap analysis, detailed description of the issues and potential impacts, as well as professional long-term remediation recommendations are provided.

The customer gladly implemented Sangfor’s recommendations and remediated the threats and risks identified, hence improving the overall security posture, enabling the customer to meet regulatory compliance standards and raising the overall security capability maturity ranking.


By clicking on the "Submit" button, you have read and consent to our privacy policy.