Managed Detection and Response (MDR) must be configured by a Global Administrator before the Malwarebytes MDR team can begin to monitor your Nebula site activity in your OneView console. First, you must subscribe to the MDR service before you can configure the settings in OneView. For more information, see Subscribe to Add-ons in OneView.
Watch this video to configure MDR in OneView:
When adding this service to a site, the MDR team must know which OneView users to contact when remediation steps are required for detections or suspicious activities. During emergency situations, you may be contacted by phone at any time of the day. Select OneView users and provide phone numbers for primary, backup, and alternate contacts that the MDR team can communicate with.
Note: The selectable contact users are either Global Administrators or Site Administrators assigned to the site in OneView.
OneView notifications are created for all contacts selected on this page. For more information, see Set up Managed Detection and Response notifications in OneView.
When deleting a OneView user who is a MDR contact from the Settings > Users page, you are prompted to select a new MDR contact.
Global Data Protection Regulation requirement
CAUTION - This setting cannot be changed later. Confirm the correct selection is made before clicking Save.
Global Data Protection Regulation (GDPR) is a regulation on data protection and privacy in the European Union (EU) and European Economic Area (EEA). If you have any endpoints protected by OneView located in the EU or EEA, select Yes. This selection controls where data for MDR is stored.
You can choose the level of remediation service provided by the MDR team. Services range from fully managed to notifications only when there is a threat or suspicious activity.
- Malwarebytes managed: The MDR team will remove threats to protect your environment. This does not include rebooting, re-imaging, or other onsite tasks.
- Notification only: The MDR team notifies you of detected threats and provides detailed instructions to perform remediation.