Web Content Viewer

Actions
 

MANAGED DETECTION AND RESPONSE AS A SERVICE

Managed Detection and Response (MDRaaS) is a service that combines continuous monitoring of a business's digital assets with an "always-on" certified incident response team to defend your network to first prevent, and ultimately to respond to, a cyber-attack.

 
 

Why managed detection and response as a service?

 
 

When business-critical assets are at risk in today’s digital economy, protecting those assets must be of the utmost priority. Increasingly, compliance and regulatory entities require logging and security monitoring be in place. It’s no secret that there is a scarcity of skilled cybersecurity professionals, approximately a half a million according to the FBI, which has generated a significant challenge for CIOs and CISOs to identify, hire, and retain top talent to protect their digital landscape.

To build internal Security Monitoring today, business owners need to make large CAPEX investments and most CFOs and CEOs prefer predictable Operational expenses. In-house SOCs are typically very expensive and overloaded, engineers are burning out from boring routine, and 24x7 coverage is a struggle to gain full visibility of attacks and policy violation inside the network.

 
 
  STANDARD
Detection Only
Endpoint Protection Solution - SentinelOne Control
 
24x7 Monitoring, Notifications & Response to Endpoint Incidents  
Self-provisioned deployment in hours, not days  
Handle multi-step investigations: trace activities associated with compromised systems  
24x7 Alert triage performed by UD analysts apply the MITRE & Kill-chain methodology to see the attack lifecycle  
Direct Chat with our analysts in 24x7 mode  
Detailed Remediation Guidance  
Scheduled Automated Reports  
Multi-channel Alerting (e.g. via SMS, Calls, Slack or Email)  
Customer Portal - War Room  

 

  ENHANCED
Office 365 / Google Workspace Email Threats  
Proactive Threat Hunting  
Advanced Metrics, Reporting and Summaries for Compliance  
Dedicated Customer Engagement Manager  
Vulnerability Scanners Logs Integration (e.g. Nessus)  
Containment and Remediation  
Resilience Recommendations  

 

  PROFESSIONAL
Co-Managing your SIEM
(Splunk, Elastic, Azure, SumoLogic, Logrythm, IBM Qradar, Archsight etc)
 
Reports PCI, HIPAA and CIS Top 20 Pre-Defined  
UnderDefense Library with 1500+ detection rules  
Cloud Security Monitoring: AWS/Azure/GCP Log Trail & API Integration  
Tuning your security tools to improve visibility  
Malware Analysis  
Custom Reporting  
Employees and domain passwords leaks monitoring in Darknet  
Manual Remote response with customer IT (40 hours/y)  
Automated Response Integration with Customer Tools  
SOAR as a Service to decrease time to Responsd and Automate IR  
Integration with Ticket/Incident Management systems (Connectwise, ServiceNow, Jira)  
 
-->
 

Are you ready to step up your security? Let’s talk.

Contact Us

 
 

Many variables can impact the security of a customer’s device and data. Canon does not warrant that the use of services, equipment, or related features detailed herein will eliminate the risk of potential malicious attacks, or misuse of devices or data or other security issues.

 

MDRaaS

Actions
MDRaaS