Managed Detection and Response
We have you covered: from EDR to XDR
Whether you are seeking end point detection and response (EDR) or enterprise detection and response (XDR) Vertek has you covered. We leveraging a robust, world-class SIEM (Security Information Event Management) platform, to ingest security related event data from across your enterprise. But we do more than leverage security technology to just monitor traffic, authenticate users, protect data, and prevent malware. Vertek normalizes vulnerability and threat data into actionable intelligence and provides extended response services that eliminate threats to your business.
Simplifying MDR, EDR & XDR
Many organizations are looking to understand the differences between Endpoint Detection and Response (EDR), Managed Detection and Response (MDR) and Extended Detection and Response (often referred to as XDR). The reality is each of these approaches to detection and response are needed and required as you build a layered security model that protects your data and systems from multiple attack vectors and modern ransomware and social engineering attacks. Unlike traditional EDR solutions, Vertek’s Managed Detection and Response and Managed Threat Intelligence services are built on top of a Security Information Event Management (SIEM) platform – which is essential for organizations that are seeking enterprise-wide monitoring, detection, and response coverage and are looking to advance their information security program and reduce risk. Extended detection and response comes from our native ability to take automated response actions with certain security technologies (e.g., perimeter, endpoint and other security products).
The SIEM provides a single pane of glass for security management by aggregating logs from cloud and on-premises technologies. Different members of your organization can leverage SIEM in different ways:
Security Engineers
Create alarm, filtering/suppression, notification, and in some cases response rules to automate incident response actions and stop threats in real-time.
Security Analysts
Perform threat hunting activities and investigate security alarms and surrounding events.
Security/Risk Officers
Provide report evidence for system security assessments and compliance audits.
Vertek has deployed our Managed Detection and Response (MDR) and Managed Threat Intelligence (MTI) services within over a dozen of the most heavily regulated industries. Our MDR service includes SIEM tuning, management, monitoring, threat hunting and detection, alerting, and human led response and remediation support. Vertek’s MDR solution includes:
Security Compliance
Monitoring and reporting, generating evidence artifacts for auditors
Incident Detection
Tuning noisy and non-security related events that cause alarm fatigue
Security Resources
Deploying security orchestration and custom threat detection
Automated Response
Deploying security orchestration and custom threat detection
Demand More From Standard SIEM Analytics
Vertek’s Managed Detection and Response Security Operations team uses proven NIST-based incident response playbooks and superior security engineering resources to help enhance your team’s ability to detect, respond, and remediate threats. We provide actionable response and remediation guidance support you with monthly reporting that tracks alerts, threats, remediation and ticket status.
Top reasons customers choose Vertek:
- I need dedicated security focus, visibility, and analytics
- I need help managing the “flood” of security events
- I need outside security expertise to augment existing staff
- I need assistance meeting regulatory or compliance requirements
- I need to detect non-compliance violations and system or service audit failures
- I need to develop cyber incident and response (IR) capabilities in weeks – not months
Hear about Vertek MDR & MTI
What Our Clients and Partners Say About Our High Quality Service
Vertek Managed Detection & Response = all of the benefits from a world-class SIEM, plus enterprise-wide security coverage from a 24x7 Security Operations Center
| Managed Security Solution Features | MDR | MDR+MTI |
|---|---|---|
| Baseline inventory scanning and asset registration | Included | Included |
| Baseline vulnerability environment scanning | Included | Included |
| Baseline event correlation, tuning and alarm trimming | Included | Included |
| Basic threat dashboard and report creation | Advanced | Advanced |
| SIEM tuning | Continuously | Continuously |
| Vulnerability Scanning | Weekly | Weekly |
| Network IDS and Endpoint Monitoring | Included | Included |
| Security Orchestration, Automation and Response (SOAR) | Included | Included |
| SIEM Alarm Monitoring and Analysis | Included | Included |
| Remediation Guidance | Included | Included |
| Quarterly Service/Relationship Review with TAM | Included | Included |
| Lifecycle and Compliance Report Management | NA | Included |
| Monthly Service/Technical Security Review with Analyst | NA | Monthly |
| Advanced Analytics & Dashboard Reviews | NA | Quarterly |
