Kaspersky Next MXDR Optimum

Kaspersky Next MXDR Optimum is a managed extended detection and response (MXDR) service targeting mid-sized businesses. It combines endpoint protection, in-house XDR tooling, and 24/7 expert-managed detection and response delivered by Kaspersky's Security Operations Center (SOC) team. Key service characteristics: - Average incident response time of 30 minutes; 1-hour reaction time for high-priority incidents - Approximately 30% of alerts processed automatically via AI Auto Analyst - Proactive threat hunting, investigation, and response managed by Kaspersky SOC experts - Monitoring coverage spans endpoints, virtualization platforms, and network infrastructure In-house XDR capabilities available to customers: - Alert aggregation to reduce cognitive load and improve mean time to detect (MTTD) - Cloud Sandbox for manual file detonation directly from alert cards - Active Directory integration enabling user blocking and third-party response actions - Root cause analysis with data visualization tools - IoC scanning and investigation tools Additional solution capabilities: - Cloud security visibility including unauthorized access blocking and sensitive data discovery in Microsoft 365 apps - IT management covering vulnerability, patch, and update management; third-party software installation - System hardening with Adaptive Anomaly Control and automated security policy configuration - Multi-layered anti-malware and ransomware protection with continuous endpoint monitoring - Security Awareness training assignment automation triggered directly from alert cards The solution is positioned as a cost-effective option for organizations that want to retain some in-house XDR capabilities while offloading complex threat investigation and response to managed security experts.