The Breisgau-Hochschwarzwald district administration deployed G DATA 365 | MXDR to provide 24/7 monitoring, automated containment, and transparent incident handling for over 2,300 clients and servers, addressing limited in-house security staffing and compliance requirements. The managed rollout was completed in about four months, delivered stable daily operation with ticketed alerts and vendor collaboration, and proved effective during PoC and production use. #BreisgauHochschwarzwald #GDATA365MXDR
Keypoints
- Breisgau-Hochschwarzwald runs two data centers, supports over 2,000 clients (rolled out to ~2,300), and has 70 IT staff of which five focus on IT security.
- Traditional antivirus was deemed insufficient, prompting selection of a Managed Extended Detection and Response (MXDR) solution for continuous detection, blocking, and analysis.
- Selection criteria included 24/7 monitoring, immediate automated response/containment, transparency of alerts and responses, and preference for a European provider compliant with GDPR and BSI IT-Baseline Protection.
- A 2024 proof of concept with G DATA 365 | MXDR proved convincing despite minor issues; G DATA responded quickly to feedback and provided solutions.
- Rollout began spring 2025 and completed in about four months with smooth technical deployment; main challenges were organizational (e.g., coordinating with schools during exams).
- Operational experience: stable service, alerts forwarded as service-desk tickets, an overview portal for incidents, an on-call roster not yet required, and positive vendor partnership with regular optimization meetings.
MITRE Techniques
- [None ] No MITRE ATT&CK techniques were mentioned in the article – ‘No specific ATT&CK techniques are referenced.’
Indicators of Compromise
- [None ] The article does not list any indicators of compromise – ‘No IPs, hashes, domains, or filenames were reported.’