Managed Network Security

Today’s SOC challenge.

The world of cyber crime has changed dramatically over the last ten years. Cyber criminals have embraced new technology faster than industry to deliver higher volumes of more sophisticated attacks. There is no longer a question of do you need a SOC, just what is the most effective way to deliver detect and response to attacks on your infrastructure and applications.

Delivering an effective SOC function in any organisation is not an easy task. The technology is expensive and expansive. Your controls provide layers of protection and generate the alerts that a SOC can use to detect a cyber attack, but investment is needed in a SIEM platform to parse and store logs firstly and now you need to consider Security Orchestration Automation Response (SOAR) platforms to deal with the increasing volume of events.

Once all of this is in place (and paid for), you need people with the skills and experience to run the SOC. These people have a different set of skills and demand high salaries. It is well known that there are not enough to fulfil demand.

With a service so critical to your organisation, you cannot afford to compromise. Unless you are a large corporate enterprise or central government body, building a dedicated SOC function in-house simply doesn’t make commercial or operational sense. It’s why in the last ten years, there has been significant growth in the number of Managed Security Service Providers (MSSP). Your challenge now is choosing the right MSSP, who understands your organisation and whom you can trust to be there when you need them the most.

You need Centri.

We have built a reputation for trust with our customers, which has allowed us valuable insights into what a customer from both the private and public sector needs from a SOC service. We have created a managed service that is built around use cases that are relevant to our customers’ organisations, rather than create a SOC that monitors for generic alerts.

Your organisation is different to the next. By taking this approach we can understand what risks you are exposed to, leverage threat intelligence to identify relevant threats and determine how resilient your systems are to attack today. This enables the implementation of use cases that matter to you and ensure you have the right protective controls in place and configure appropriately.

Our service comes packaged with the technology needed for your SOC function. We have partnered with industry leading vendors for SIEM, SOAR and Threat Intelligence to create an “out of the box” platform that we can easily deploy collectors for on your premises or in the cloud. Utilising these tools means we can handle the high volume of alerts and quickly automate the false positives to ensure that our SOC team focus on the real incidents.

When an attack does penetrate your protective controls, our first task is to detect it as fast as possible. Once detected, we are there with you to manage the incident with your team, contain it and then provide support through recovery. If a subsequent criminal investigation occurs then we can produce the required evidence and you choose optionally to utilise our forensics service, if required.

The service is simple and affordable. We charge for the initial set up of the service and then a recurring charge based on your consumption level. The service has the added benefit of providing a portal where your organisation can get visibility of your status.