MSSP

Managed EDR

As the volume, variety, and sophistication of cybersecurity threats increase exponentially; organizations find it difficult to maintain the security posture on their endpoints. Tools like NGAV & EDR are very helpful, but the huge volume of data they throw up presents another challenge. Expert resources are required to analyse and make sense of the logs and identify threats.

Go in for Softcell’s Managed EDR services to improve your company’s level of threat monitoring, detection, and analysis without needing a 24x7 internal security team up-to-date with the latest threat data. Softcell’s security experts help you to gain insights into the threat landscape, reduce dwell time and meet regulatory and compliance requirements.

Platforms supported

Crowdstrike

Trend Micro



Sentinel One



What’s included

Monitor - Manage - Maintain - Report - Support

MONITOR
  • EDR server Health (CPU /Disk Utilization, performance).
  • Proactive Console monitoring and alerting.
  • False Positive analysis.
  • Coordinate with Customer SOC team for incident reporting.
  • Quarterly reviews to keep you updated.
MANAGE
  • AV/EDR agent installation/ Uninstallation.
  • Creation and management of :
      - IOCs
      - Policy Configuration
      - Dashboards
      - Application and Host Firewall rules
      - Custom groups & Alerts
      - Automation Workflows
      - Removable Device Policies
      - Exclusions
MAINTAIN
  • New version Alert.
  • Out of support OS Alert.
  • Version upgrades/patches.
  • Management Console administration.
  • Tracking of License Utilization.
REPORT
  • Quarterly review meetings with management.
  • Monthly & Quarterly MIS reports.
  • Health Check-up Reports.
  • Consolidated Detection Dashboard.
SUPPORT
  • Troubleshoot issues.
  • Coordinating/escalating with OEM.
  • Track issues to resolution.
  • Train team on new features.
Benefits

Operational

  • Prompt incident reporting and alerting.
  • Improved response time/reduced false positives.
  • Enhanced forensics, and higher level investigations.
  • Proactive protection against latest threats.
  • Seamless agent deployment/uninstallation.
  • Customisation of policies, dashboards, Rules.

Business

  • Reduce operational overhead by automation.
  • Detailed reports to meet compliance and audit requirements.
  • Maximize ROI with Health check-ups and regular reviews.
  • Remove overhead of troubleshooting.
  • Alignment with industry best practices.

For further information, please contact [email protected]

  Loading...