Defend your business from cyber-attack with ThreatDetect™ Redscan’s Cyber Security Operation Centre as-a-service
ThreatDetect™ from Redscan is an award-winning managed detection and response (MDR) service offering businesses of all sizes enterprise-grade security against cyber threats.
Integrating cutting-edge detection technology with latest cyber research and in-depth human analysis, this 24/7 Security Operations Centre-as-a-service acts as a virtual extension of an organisation’s internal resources to supply the tools, intelligence and expertise needed to hunt for and remediate the latest sophisticated attacks.
Gain visibility of, and clearly understand, the threats facing your business in order to improve defences, reduce cyber security risk and enhance boardroom and investor confidence.
Detect wide-ranging threats
Detect the latest sophisticated threat actors that preventative cyber security solutions such as firewalls and antivirus software can miss.
Rapidly respond to attacks
Receive notification of genuine security incidents to enable in-house teams to focus on remediating threats, rather than the difficult and time-consuming task of discovering them.
By providing detailed incident information and remediation advice, Redscan’s CSOC experts provide the end-to-end support needed to remove advanced threats and address any identified vulnerabilities.
Remove the need for upfront investment
Avoid outlay on expensive technology and hard-to-recruit security professionals by choosing an all-in-one managed service offering advanced threat detection and response capabilities for an affordable monthly subscription.
Comply with the GDPR and other standards
Put in place the proactive cyber security monitoring needed to help achieve compliance with the Global Data Protection Regulation (GDPR) as well as other compliance standards including PCI DSS, ISO 27001/2 and GPG13.
Key service features
Proactive 24/7 monitoring
Stay protected around the clock with our team of dedicated cyber security operations centre analysts and engineers who work tirelessly to hunt for, identify, investigate and rapidly escalate threats.
One complete detection platform
Benefit from one vendor agnostic managed threat detection and response service capable of leveraging existing security infrastructure, including the very latest threat detection technologies, to offer:
-Security Information and Event Management (SIEM)
-Intrusion detection (IDS)
Instant notification of threats
View an up-to-date picture of your organisation’s security posture and receive instant notification of threats and remediation advice via CyberOps, the real-time threat intelligence and analytics platform included as part of our ThreatDetect MDR service.
Leading security professionals
Our team of CSOC security analysts, engineers and researchers are trained to the highest professional standards to ensure that we retain our excellence in defending against the very latest types of attack.
Qualifications we hold include: CISSP, CISSP- ISSAP, CISA, CISM, CEH, OSCE, OSWP & CREST.
Integrated cyber threat intelligence
Through the aggregation of in-house cyber research with external cyber threat intelligence from leading exchanges and sharing programmes like CiSP from CERT-UK, we ensure organisations benefit from the latest security information to help shape defensive actions and risk management policies.
Advanced threat analytics
By collecting, processing and correlating network event data, our advanced threat analytics and detection systems use a combination of analytics, proprietary algorithms and rules to raise security alarms. These are subsequently analysed by our team of CSOC experts to save your in-house teams the time-consuming and complex task of separating genuine alerts from false positives.
Monthly and quarterly written reports offering thorough security insight and analysis enable key stakeholders, both technical and non-technical, to clearly understand cyber risks. Reports are supplemented by regular telephone and on-site service reviews.
Actionable security intelligence
The tools, tactics and procedures (TTPs) of cyber attackers are continually evolving, meaning machine intelligence alone cannot be relied upon to effectively protect your organisation’s critical assets.
ThreatDetect, Redscan’s managed threat detection and response service, combines cutting-edge detection technology with human insight and ingenuity to identify the latest attacks and provide true security incident reporting and remediation advice to facilitate rapid elimination of threats.
Included as part of ThreatDetect
Full system deployment and management
Installation and optimisation of the latest threat detection technologies ensures organisations receive the best possible defence at all times.
• Includes Security Information and Event Management (SIEM), intrusion detection, behavioural monitoring and other cutting-edge technologies
• Extensive health monitoring of all hardware and software components
provides total system confidence
• Hassle-free updates, upgrades and backups alleviate business disruption
Network vulnerability scanning
Network scanning using leading vulnerability assessment tools highlights weaknesses across an organisation’s complete environment.
• Identifies vulnerabilities within systems, software, firewalls, wireless networks and more
• Clear remediation advice saves valuable time and helps prioritise risks to address
• On-request, unlimited scanning enables changes in security posture to be tracked
Event monitoring and investigation
Proactive network monitoring and investigation by Redscan's CSOC enables cyber threats to be quickly hunted down and eliminated.
• Cuts through background noise and false positives to provide early notification
of genuine threats
• Expert insight and analysis provides actionable intelligence and assists threat prioritisation
• Helpful remediation advice to address threats,, including root cause and impact analysis
In-depth reporting and analysis
Regular hand-written security reports provide clear advice to help IT and executive teams enhance situational awareness and track performance.
• Weekly, monthly and quarterly reports provide a clear picture of security posture
• Regular performance reviews help to identify service improvements
• Qualified CSOC experts contactable 24/7
Cyber incident investigation & response
Experienced security experts are on hand to handle the fall out of a cyber-attack, help put in place an effective intrusion response plan and assist with implementation of policy.
• Thorough crisis management to manage and remediate critical security incidents
• Detailed incident investigation to identify the source of an attack
• Clear advice about how to resolve immediate and long term issues
Redscan’s team of skilled and certified security operations centre experts operate as a virtual extension of your in-house IT team to provide a fully managed CSOC-as-a-service. We:
Our experts configure and proactively tune ThreatDetect to ensure it remains effective and meets evolving business and technical needs
Our experts detect, hunt, investigate and respond to anomalous and suspicious behaviour, while eliminating false positives
Our experts make clear and helpful recommendations to ensure security incidents are prioritised and resolved swiftly and effectively
Our experts provide regular hand-written reports and briefings that enable IT and executive teams to clearly understand threats being faced
Advanced threat notification, analytics and reporting
CyberOps, the real-time intelligence platform included as part of ThreatDetect, provides complete visibility of your organisation’s cyber security posture. It offers:
True incident reporting
Receive notification of genuine security threats that have been thoroughly analysed by our security operations centre experts to save you time investigating background alerts and false positives.
Real-time status monitoring
Monitor changes to your organisation’s security threat level to comply with risk management procedures and uncover patterns in attack behaviour.
A streamlined workflow
Manage security incidents through to remediation with an easy to track workflow.
View powerful data visualisations to see a live picture of your organisation’s security status and measure key response metrics to ensure that SLAs are being met.
Advanced threat visibility
Rapidly respond to incidents and vulnerabilities via CyberOps’ intuitive workflow management system that offers complete visibility of users and enables threats to be managed and tracked by teams.
On-premise or in the cloud
ThreatDetect’s advanced threat detection technology is capable of analysing all of your organisation’s critical business and network data.
Highly scalable, ThreatDetect supports physical and virtual deployments and can be installed on-premise or accessed via Redscan’s fully resilient cloud service. Monitoring of Amazon Web Services (AWS) environments is offered.
Comply with industry standards
The ThreatDetect security operations centre as-a-service supports compliance with a wide range of regulations and standards which necessitate proactive threat detection and response.
ThreatDetect provides custom reports and log retention for:
Concerned about potential targeted attacks, the global finance and investment company ICG subscribed to Redscan’s ThreatDetect™ service. The business now has far greater confidence in its information security and ability to respond if the worst should happen.