Managed detection and response services provide clients with remotely delivered security operations centre (SOC) functions. These functions allow organisations to rapidly detect, analyse, investigate and actively respond through threat mitigation and containment. MDR service providers offer a turnkey experience, using a predefined technology stack (covering areas such as endpoint, network and cloud services) to collect relevant logs, data and contextual information. This telemetry is analysed within the provider’s platform using a range of techniques. This process allows for investigation by experts skilled in threat hunting and incident management, who deliver actionable outcomes.
About our MDR service
Reliance acsn has developed a specialism for building and running MDR services based on the Microsoft security stack and with Sentinel (SIEM tool) at its heart. This specialism has seen us both advise clients on how to plan and build their own internal Sentinel based service, as well as plan, build and run as an extension of a client’s own security team.
MDR at Reliance acsn has been in place since 2014 and built based on client requirements and developed through drive and ingenuity of our team, who are always looking for ways to increase the quality and coverage of our service.
The service is based on the elements below, which we passionately believe are all required to deliver an effective MDR service.