Webinar Safetech Innovations: EDR and XDR – the anatomy of a modern cyber defense
On May 29, 2025, Safetech Innovations held the webinar “EDR and XDR: The Anatomy of a Modern Cyber Defense”, an event dedicated to professionals interested in understanding the current context of cyber threats, the implications of European regulations in the field and the robust solution to address these challenges, consisting of the EDR/XDR Cynet platform and Safetech’s cyber threat monitoring and response services.
Participants had the opportunity to learn essential details about the requirements of the NIS2 Directive and the DORA Regulation, two major legislative initiatives that set new IT security standards in Europe. During the session, Safetech Innovations experts – Cătălin Gherghiceanu (Presales Manager) and Călin Tămaș (Cybersecurity Specialist) – exemplified, including through practical demonstrations of the capabilities of the Cynet platform, how a complete EDR/XDR solution can strengthen the cyber defense of organizations. As an official Cynet Security partner in Romania, Safetech Innovations offers this advanced solution both as a reseller and as a Managed Security Services Provider (MSSP).
The role of EDR, NDR and XDR in the anatomy of a resilient and antifragile system
Cătălin Gherghiceanu opened the webinar by presenting two environmental models – VUCA (Volatility, Uncertainty, Complexity, and Ambiguity), but also the more recent BANI (Brittle, Anxious, Non-linear, Incomprehensible) – based on which he highlighted the cybersecurity challenges that organizations can face. Using these models as reference points, the Safetech Innovations specialist outlined the main response strategies and cybersecurity objectives to be achieved, as well as the technologies and mechanisms that can support their achievement, as follows:
- VUCA (Rational, Planned Control): Continuous monitoring, patch management, threat intelligence, risk analysis, anticipated scenarios, GRC (Governance, Risk, Compliance), awareness, clear policies, actor profiling, SIEM (Security Information and Event Management), SOAR (Security Orchestration, Automation and Response), segmentation, redundancy, Disaster Recovery/ Business Continuity plans, regular audits, clear procedures, well-defined responsibilities, on-chain coordination, procedural simulations.
- BANI (lucid, antifragile adaptation): Chaos engineering, AI/ML for anomalies, black swan drill simulations, autonomous detection, distributed reaction, local autonomy, decision-making empathy, lucid improvisation, antifragile architectures, Zero Trust, automated failover, active backup, collapse tolerance, playbook under stress, adaptive leadership, empathic communication, psychological support.
The manager highlighted the essential role of standards and regulations, which provide clear directions for implementing an effective cyber defense strategy. He also drew a parallel with the human body – a source of inspiration both for adopting new technologies and for adapting them according to organizational specifics, so that they can be used as efficiently as possible. Subsequently, Cătălin Gherghiceanu reviewed the most modern technologies in the field of cybersecurity, with a focus on EDR, NDR and XDR, and highlighted how they contribute to aligning organizations with the requirements of current regulations, such as the NIS2 Directive and the DORA Regulation.
“EDR, NDR and XDR offer multiple detection mechanisms, provide very good visibility, usually end-to-end, on assets within the network, have automatic isolation and response capabilities through SOAR playbooks, and are also able to learn from the events they observe/monitor, and from the behavior of users and devices. (…) We have concluded that at the level of devices, network, applications, data, and users in the network we want to protect, EDR/NDR/XDR can directly support approximately 70% (17/25) of the Cyber Defense Matrix/NIST CSF quadrants. As a result, from a network that is intended to be resilient, these technologies cannot be missing,” said Cătălin Gherghiceanu.
Next, Cătălin Gherghiceanu provided the main coordinates of the Cynet all-in-one platform, which is based on an EDR solution, with XDR capabilities.
In the MITRE ATT&CK evaluations, Cynet ranks first in the EDR solution category for the second consecutive year, due to its outstanding performance in the standard configuration: it was able to detect and prevent all types of attacks tested, without knowing them in advance and without generating false alerts – with a rate of 0% false positives. “From our point of view – because Safetech Innovations uses this solution including as a SOC platform, so we have concrete and real feedback from the market – the solution is very efficient and comes at an affordable cost”, added Cătălin Gherghiceanu. He also did a detailed analysis of how the Cynet platform helps comply with NIS2 and DORA regulations.
In the second part of the webinar, Călin Tămaș held a series of practical demonstrations through which he highlighted, through concrete examples, the strengths of the Cynet platform and how it differs from other EDR solutions. He also explained the platform’s extensive capabilities, which raise the level of protection offered to the standards of an XDR system.
The Safetech Innovations specialist detailed the process of installing the platform and agents, how the integration with cloud environments is achieved, the benefits of these integrations and the types of data collected.
The demo highlighted how Cynet protects customer infrastructure in real-time and provided an overview of the investigation process.
At the same time, the advanced tools made available by Cynet for security analysts and operators were also presented, which allow advanced investigations, beyond the automatic ones carried out natively by the platform.
You can watch the presentations from the webinar in the video recording of the webinar “EDR and XDR: The Anatomy of a Modern Cyber Defense”.
Safetech Innovations can provide access to the Cynet platform for a trial or PoC (Proof of Concept), organize technical demonstrations and provide customized evaluations, either budgetary or adapted to the concrete scenario you want to cover. In addition, we can complete the implementation with specialized services from our own security center, STI CERT.
This first webinar marks the beginning of a series dedicated to the most effective modern cybersecurity solutions. We invite you to join us at the next event, which will take place on June 11, 2025, at 15:00, and will address the theme „Modern SOC: Smart Centralization and Local Autonomy with Open XDR”.
For additional information you can contact us at sales @ safetech.ro or by phone at +40 21 316 0565.