Delivering security leaders the operational assurance and visibility they need between penetration tests.
OnDefend, a leader in proactive cybersecurity control validation, has announced two new feature sets within BlindSPOT™, its breach and attack simulation (BAS) platform: Threat Detection Validation and Threat Response Validation.
These capabilities allow organizations to continuously test whether their detection tools—like Endpoint Detection and Response (EDR), Extended Detection and Response (XDR), and Security Information and Event Management (SIEM)—and their internal Security Operations Center (SOC) team and Managed Detection and Response (MDR) providers are performing as expected in real-world scenarios.
BlindSPOT simulations map to the MITRE ATT&CK framework and measure mean time to detect (MTTD), mean time to respond (MTTR), and vendor service-level agreement (SLA) adherence. The platform also includes real-time alert monitoring, escalation path validation, and immediate failure notifications—helping teams catch breakdowns before attackers do.
“Security leaders told us they didn’t just want to pass compliance—they wanted proof their investments were protecting them,” said Chris Freedman, CEO and Co-Founder of OnDefend. “BlindSPOT now gives them continuous validation that detection tools and response teams are delivering as expected.”
These new features complement penetration testing, which remains essential for identifying perimeter vulnerabilities. While pentests reveal if attackers can get in, BlindSPOT validates what happens next—whether alerts trigger and teams respond.
“Penetration testing is like checking your home window and door locks,” said Freedman. “But it doesn’t tell you if your alarms notify response teams. BlindSPOT continuously tests detection and response capabilities to prove your organization is protected. If your home provider did that daily, wouldn’t you sleep better at night?”
To reduce complexity, OnDefend also offers BlindSPOT as a fully managed service—delivering BAS-level outcomes without needing to purchase software, build red/purple teams, or manage ongoing simulation content.
Whether self-managed as a SaaS platform or delivered as a service, BlindSPOT provides measurable assurance that detection and response investments are working as intended—and delivering meaningful return on investment.
Explore AITechPark for the latest advancements in AI, IOT, Cybersecurity, AITech News, and insightful updates from industry experts!