The Respond Analyst Packaging

The Respond Analyst augments your frontline team, finding and escalating only important security incidents across your alerts and data.  Respond Software offers flexible packaging options to fit your specific security requirements.


Signature-based sensor XDR

  • Network Intrusion and Detection Protection Systems
  • Endpoint Protection Platforms
  • Up to 10K endpoints
  • 2 users

Organizational context:
DHCP, Safe Lists, Incident History, Vulnerability scans, Manual Asset & Account Criticality Lists

Intelligence sources:
OTX Threat Intel, Public VPN Information Service, Geolocation Service, Geo Suspicious, TOR Anonymization Information Service


Advanced sensor XDR

  • Includes Standard package sensor evidence
  • Endpoint Detection and Response
  • Web filter/proxy
  • Industrial Control Systems (ICS) Intrusion and Detection Systems
  • Up to 25K endpoints
  • 4 users

Organizational context:
Standard, plus Automated Asset & Account Criticality Identification, Active Directory, Geo Location Importance, TTP Importance

Intelligence sources:
Standard, plus VirusTotal Threat Intel, Whois service, custom TIP support (STIX/TAXII)


Enterprise XDR

  • Includes Premium package sensor evidence
  • Unlimited endpoints
  • Unlimited users

Organizational context: 
Same as Premium

Intelligence sources:
Same as Premium

What Analysts Are Saying

“It’s critical to identify, investigate, and escalate the critical security alerts across your existing security stack. The Respond Analyst can assist beleaguered security teams to do so.”

Christina Richmond, Principal Analyst, ESG


The Respond Analyst, an XDR Engine Data Sheet

The Respond Analyst, an XDR Engine, is the first decision automation system for cybersecurity. With the speed, scale and consistency, the Respond Analyst is ready to go to work, out-of-the-box.