Managed Detection & Response (MDR)

  • Home
  • Our Services
  • Managed Detection & Response (MDR)
image

CSA provides a MDR service to over 35,000 devices across the globe, with market-leading products offering extended detection and response. Without expert knowledge, many organisations waste time by investigating unreliable alerts, meanwhile genuine threats can go undetected for an average of 146 days. This allows plenty of time for a cyber criminal to gain access to sensitive and private data.

Part of an effective cyber security defence is having robust monitoring and detection services in place, enabling you to be on the constant lookout for security threats lurking in any network traffic. Monitoring and detection is a proactive and advanced approach to cyber security that not only detects suspicious activity, but actively hunts down threats, monitors cyber security 24/7, assists in rapid breach incident analysis and responds to eliminate threats from the system before they become an issue.

At CSA will provide a variety of MDR capabilities and services that will meet each customer’s needs and requirements. Our core MDR capability is powered by Microsoft Sentinel, but we recognise that this will not be suitable for all customers. Hence our offer of SentinelOne and our own designed capability – Borderpoint, will ensure we can keep all of our clients safe and secure.

image

Microsoft Sentinel

Microsoft Sentinel is a scalable, cloud-native solution that provides both a Security information and event management (SIEM) and a Security orchestration, automation, and response (SOAR) platform.

Microsoft Sentinel delivers intelligent security analytics and threat intelligence across the enterprise. With Microsoft Sentinel, you get a single solution for attack detection, threat visibility, proactive hunting, and threat response.

Microsoft Sentinel is your bird's-eye view across the enterprise, alleviating the stress of increasingly sophisticated attacks, increasing volumes of alerts and long resolution time frames.

image

Sentinel One

Singularity XDR unifies and extends detection and response capability across multiple security layers. It provides security teams with centralised end-to-end enterprise visibility, powerful analytics, automated response across the complete technology stack.

With Singularity XDR, you can get unified and proactive security measures to defend your entire technology stack, making it easier for security analysts to identify and stop attacks in progress before they impact the business.

BorderPoint

BorderPoint is a continuous protective threat monitoring and detection capability designed and implemented by CSA. Its purpose is to identify and detect cyber threats in real time so that you can be notified of new potential vulnerabilities and attacks, which we can then advise you on appropriate remedies.

A key benefit of BorderPoint is that it monitors endpoints inside and outside of the office network. Some SIEM services only monitor devices inside the network, however when a laptop leaves the office, BorderPoint still has it covered.





Would you like to talk to us and find out more about our services?

Please fill in the form below and one of the team will get in touch.