24/7 Cloud Managed Detection and Response

Transform your security ecosystem from reactive to proactive. We provide remediation capabilities on top of Cloud Threat Monitoring service to ensure adversaries are not just tracked but kicked out from your environment as soon as possible.

We operate in 2 major modes:

  • Cloud Managed Detection and Response (night) — we monitor and protect your infrastructure to suppress hackers targeting your assets during the night in the DST time zone, while your core team is off duty.
  • Cloud Managed Detection and Response (24/7) — we employ teams across the globe to cover your back around the clock.
We deliver the following set of activities:
  • Log sources on-boarding and log mapping.
  • Our ready-to-use security content, dashboards and Machine Learning jobs on-boarding and tailoring.
  • Monitoring and triage of your cloud security alerts and incidents.
  • Preparation of recommendations regarding further response to an incident.
We use best-of-breed tools to ensure world-class quality and timely delivery of services:
  • Sumo Logic
  • GitLab
  • SOAR
  • AWS Lambda
  • Azure Functions
  • Cloud Formation
  • HighTower Customer Portal
  • RE&CT Framework
icon_treat_detection

You’re going to build 24×7 SOC with an aim to support compliance program and detect threats coming from cybercrime, etc.

icon_time

Your primary infrastructure is AWS-hosted. You understand that building a SOC would take at least 2 years to make it mature.

icon_robot

Your SOC would not just detect threats but actively respond when your DevOps team is asleep.

   
What you’ll need On your own
THE TOOLS

  • SIEM + Data analytics
  • SOAR (incl. workflow platform)
  • Machine learning capability
  • Infrastructure orchestration
  • Knowledgebase
  • TI
We on-board in 30 minutes with zero up-front cost.
  • Spend approx 0.3 mln USD before getting results.
  • Spend approx 1.7 mln USD in the first 2Y.
  • Wait at least 6 months before you begin getting any results.
THE PROCESS
  • Analyst hiring and retention
  • Log source management
  • Alert / Incident management
  • Use cases management
  • Threat Intelligence
  • Playbook management
  • Architecture management and research
  • SOC Efficiency Management
  • SOC Response and DevSecOps procedures
Have them ready from the get-go – we’ve already developed and tested them.
  • Experience risks on missing out for each of 9 processes.
  • Spend 3 months to just test each one.
THE TEAM

Build Team

  • 3 L2 analysts + PM + SOC architect

Run Team

  • 5 L1 analysts
  • 2 L2 analysts
  • L3 analyst / SOC Architect SOC Head
Spend nothing and wait no time before getting results.
  • Spend approx $0.3 mln before getting results.
  • Spend approx $2.7 mln over 2Y.
  • Wait 2+ years to have a team hired.
ONE MORE THING
  • Security audit and penetration testing tools
  • Security audit and penetration testing processes
  • Security audit and penetration testing people
We supply you with Red Team AWS, iOS, Android and Web app expertises as parts of our service – tuned and integrated into a strong Cloud SOC offering.
Multiply all costs and waiting times x2, because you’ll need to constantly challenge your team, test your tools/rules and fine tune processes with comprehensive Red Team exercises.

Schedule a call and in 30 minutes you will learn how we help businesses like you

SCHEDULE A CALL