A look back at five years of Wortell MxDR
In this blog , Jeroen Niesen, Lead MxDR at Wortell, takes you on a journey through the dynamic landscape of cybersecurity. From pioneering Microsoft security solutions to scaling services and embracing evolving threats, Jeroen shares insights he's gained over the past five years. Get ready to discover the challenges, milestones, and transformative experiences that have shaped Wortell's approach to cybersecurity.
The vision: to become the best Microsoft security provider
Last week, as I flew back from the RSA Conference in San Francisco after winning the MSSP Partner of the Year award, I reflected on my past five years at Wortell. As I looked out the airplane window, I realized how our initial goals have been turned into concrete achievements. From the beginning, the vision was bold but simple: to become the best Microsoft security provider in the world. However, the road from vision to reality is anything but easy. It was a path full of challenges that forced me to be persistent and innovative, which allowed me to develop many new skills.
Five years ago, Microsoft's security products were less common in the cybersecurity world. Traditional security services consisted primarily of an on-premises SIEM system with numerous connected tools, primarily focused on network security. However, we believed in Microsoft's story and built our service around it. We worked hard to convince our customers to adopt this innovative approach and showed them the full benefits of the Microsoft portfolio. Over time, numerous Gartner reports have supported this strategy as an industry standard. Looking back, I can say with certainty that the Microsoft products have proven to be very effective, accurate, and reliable.
Managed eXtended Detection and Response
Cybersecurity as next-level protection against all internal and external threats.
Onboarding the first customer: a crucial milestone
After developing the product for our MxDR service, we reached an important milestone by bringing our first customer on board. This was a crucial step because it provided valuable insights. We received feedback, both internally about our procedures and externally from our client. These feedback streams are vital and are driving continuous improvements in our services.
Dealing with multiple clients required us to scale up. Scaling up our services came with its own set of challenges. We had to invest forward, balancing on a fine line between growth and sustainability. At the same time, my role evolved from being involved in almost every decision in our division to learning to delegate effectively. Learning to delegate was like stepping off a cliff and trusting that I would learn to fly along the way. It was uncomfortable to see others taking the reins while they were still discovering their roles, but also necessary.
Adapting to the Changing Threat Landscape
As our services evolved, so did the number of reports – each a potential threat. Early on, we decided that the quality of our services had to be high. This meant focusing on every aspect of the cybersecurity chain. As a result, we were confronted with a large number of reports related to identities (unknown logins, unknown login locations, etc.) and other threats. Automation became our mantra, not just for efficiency but for survival. The move to standardize our services was challenging, but streamlined our operations and made room for innovation that satisfied our customers without compromising security.
Having a cybersecurity service means that we have to constantly adapt our services to stay in line with the changing environment. The threat landscape is constantly evolving, and new features and tools are becoming available at a rapid pace. For us, this represents a significant effort in updating our processes and improving Vidara, the SOAR framework we developed to scale our MxDR service. Additionally, it is crucial to ensure that our team's skills are up-to-date and that they have the latest knowledge. While these updates may seem routine, the pace of change in cybersecurity is exceptionally rapid, adding an extra layer of complexity to our work. To stay ahead of the curve, we're even integrating new capabilities like artificial intelligence (AI) into our development and security teams.
The evolution of Microsoft's cybersecurity landscape
Speaking of technology, witnessing the evolution of Microsoft's cybersecurity landscape has been truly inspiring. Notable developments include the introduction of Copilot, which has revolutionized how we manage and respond to security threats; the rise of Microsoft Sentinel, now a cornerstone in our security operations; and the strategic unification of Microsoft Sentinel with Microsoft XDR, enhancing our capabilities with a more integrated and powerful defense platform. I'm proud to work closely with the various product teams on these tools.
Gratitude for cooperation
Looking back on this journey, I am extremely grateful for every moment of collaboration (with our customers, the internal teams and Microsoft), every challenge that pushed us further and every person who has been part of this adventure. I can say that I work with the most passionate and best cybersecurity professionals in the world! The award is not only for Wortell; It's for the entire team who are constantly working to make the digital world safer.
As I look to the future, I am excited about the innovations and challenges ahead. But more than anything else, I am determined to continue this journey of growth, learning, and excellence!
Thank you to everyone at Wortell, Microsoft, our partners and our customers. Your trust and support means a lot to me.
