Thu, Sep 17, 2020

Kroll Enhances Managed Detection and Response Solutions with Kroll Responder

24x7 threat hunting and superior incident response to deliver best-in-class endpoint security

New York – Kroll, a division of Duff & Phelps, the global leader in risk mitigation, investigations, compliance, cyber resilience, security and incident response solutions, today announced that it has elevated its managed detection and response (MDR) capabilities with Kroll Responder. Responder is a turnkey solution delivering 24x7 MDR, merging robust monitoring, proactive threat hunting and superior incident response by Kroll’s seasoned investigators to provide unrivaled visibility and augment organizations’ security operations.

An evolution of Kroll CyberDetectER® Endpoint, Responder addresses the essential need for organizations of all sizes to employ rapid and effective response to cyberattacks, anytime and anywhere. 

By merging rich telemetry from endpoints and an array of other event sources with Kroll’s frontline tools and expertise from responding to thousands of intrusions a year, we provide the best-in-class endpoint security solution—perfect for a largely remote workforce. The result is in-depth MDR where we “own the ‘R’”, diving deeper than any other provider to hunt, detect, contain and remediate security events, while constantly optimizing defenses. Key steps in our approach include:

  • Hunt: Rich endpoint telemetry plus alerts from other security tools are streamed through a constantly updated array of atomic and behavioral detectors to surface potential threats—detectors that are mapped to MITRE ATT&CK and enhanced by Kroll’s firsthand insight from active intrusions and incidents globally.
  • Detect: Kroll partners with Red Canary to constantly analyze and validate potential threats using just the right mix of machine and human intelligence, virtually eliminating false positives.
  • Contain: Thanks to advanced security orchestration, automation and response (SOAR) capabilities, many threats are stopped in their tracks using customized response playbooks. Kroll Responder experts review all threats within minutes by employing powerful forensic and investigative tools to identify the root cause and curtail any remaining exposure or impact.
  • Remediate: Once a threat has been contained, Kroll responders work to fully remove the threat and validate that there are no lingering threats in your environment.
  • Optimize: Kroll Responder experts deliver meaningful updates and guidance throughout the incident plus ongoing recommendations and intelligence for strengthening your security program and defenses.

Fueled by Kroll’s global risk management and investigative expertise, Responder clients also benefit from seamless access to end-to-end solutions across cyber and beyond—including governance, assessments, compliance, litigation support, consumer notification and valuation services. 

Marc Brawner, Managing Director and Global Head of Managed Services in Kroll’s Cyber Risk practice, commented, “For decades, clients have trusted Kroll to respond in their most critical moments—Responder embodies this trust and expertise in a fully managed, 24x7 detection and response solution providing invaluable security and peace of mind so our clients can remain focused on their core business.”

“The modern measure of an effective and robust information security program is the ability to rapidly detect and effectively respond to all types of incidents. Kroll Responder delivers the most in-depth MDR solution, combining rapid detection and unparalleled incident response capabilities—enabling organizations to better mitigate legal, reputational and financial risks tied to cyber incidents,” added Jason Smolanoff, Global Head of Cyber Risk at Kroll. 

See how Kroll Responder works and schedule a customized demo here.

About Kroll

Kroll is the leading global provider of risk solutions. For more than 45 years, Kroll has helped clients make confident risk management decisions about people, assets, operations and security through a wide range of investigations, cyber security, due diligence and compliance, physical and operational security, and data and information management services. For more information, visit

Duff & Phelps is the world’s premier provider of governance, risk and transparency solutions. We work with clients across diverse sectors in the areas of valuation, corporate finance, disputes and investigations, cyber security, claims administration and regulatory compliance. With Kroll, the leading global provider of risk solutions, and Prime Clerk, the leader in complex business services and claims administration, our firm has nearly 4,000 professionals in 25 countries around the world. For more information, visit

Cyber Risk

Incident response, digital forensics, breach notification, managed detection services, penetration testing, cyber assessments and advisory.

24x7 Incident Response

Kroll is the largest global IR provider with experienced responders who can handle the entire security incident lifecycle.

Notification, Call Centers and Monitoring

Kroll’s data breach notification, call centers and monitoring team brings global breach response expertise to efficiently manage regulatory and reputational needs.

Virtual CISO (vCISO) Advisory Services

Kroll’s Virtual CISO (vCISO) services help executives, security and technology teams safeguard information assets while supporting business operations with augmented cyber expertise to reduce business risk, signal commitment to data security and enhance overall security posture.

Cyber Risk Retainer

Kroll delivers more than a typical incident response retainer—secure a true cyber risk retainer with elite digital forensics and incident response capabilities and maximum flexibility for proactive and notification services.