We detect cyber attacks and defend against them before high damage is done.
Our Microsoft specialists evaluate data from Microsoft Sentinel and Microsoft Defender to detect, analyze and defend against threats on endpoints and in multi- and hybrid-cloud systems.
In addition to data analysis, our experts use state-of-the-art tools and techniques to efficiently identify anomalies and potential security risks. Through continuous training and certification, they are always up to date with the latest Microsoft technologies. The close cooperation with Microsoft ensures that they are informed about updates and innovations at an early stage. This allows us to be proactive and provide the best possible protection against ever-changing threats. With our expertise and technology, we offer companies comprehensive security protection for their Microsoft infrastructure.
Our analysts are highly qualified cyber defense experts.
We are united by a common goal: preventing damage from cyber attacks!
Klaus Wunder, Senior Cyber Defense Consultant
Klaus Wunder, Senior Cyber Defense Consultant
Our MDR service is based on the Microsoft Security Suite. The SECUINFRA 24/7 Cyber Defense & Response Center (CDRD) is the heart of our service. In cooperation with Microsoft, SECUINFRA offers a state-of-the-art Cyber Defense & Response Service. This has a modular structure in 5 expansion stages and guarantees solutions for every requirement.
Our MDR Basic Service already includes services that go far beyond the standard. It includes all technologies and services for comprehensive DETECTION, ANALYSIS and PREVENTION of cyber attacks on endpoints. This module is based on Microsoft Defender for Business and is supported by MS Sentinel SOAR, MS Defender XDR and Threat Intelligence.
However, should a major security incident occur, SECUINFRA provides support with the following services, which are billed on a time and material basis:
Company collaboration platforms are a popular gateway for attacks, which can be exploited by means of phishing and identity theft. This is where the Microsoft 365 Business Premium feature “Defender for Office 365” comes in to protect email, Exchange, Teams, SharePoint etc. against malware and phishing.
The MDR Complete Service offers companies of all sizes comprehensive protection and is based on the Microsoft 365 E5 security features coupled with services from SECUINFRA. The three most important points of attack “end device, e-mail and identity” are protectedin this module. In addition, the module offers enhanced protection by detecting anomalies in the network and securing SaaS applications against identity theft and data leakage. This provides you with comprehensive detection, analysis and response against cyber attacks and puts you in an excellent position in this area.
The MDR Premium module offers companies of all sizes even greater protection and covers all Microsoft security products of the respective subscription, including the SIEM functionalities of Microsoft Sentinel. The service also offers flexibility in the retention period of the collected security-relevant data. The service is based on the features of Business Premium or Microsoft 365 E5 Security Features and is supported by the advanced detection capabilities of UEBA. Other services such as Defender for Cloud are also covered. This provides full protection for endpoints, collaboration (email & Teams), identities (AD and Azure Entra ID) and yourcloud infrastructure. This module alsooffers services such as cyber deception.
In addition to all MDR Premium features, the highest level offers the option of enriching the Sentinel SIEM with security-relevant data from your log sources via Microsoft Data Connectors. This has the advantage that this data and the data from the Defender modules can be correlated using additional use case rules and thus utilize the full Sentinel SIEM capabilities. Benefit from SECUINFRA’s extensive USE-CASE library, which has proven itself in numerous customer projects and is constantly being optimized by our experts. Third-party hardware and software, such as firewalls or proxy servers, etc., are also monitored to detect anomalies.
Anti Phishing: Companies are facing an increasing number of cyber attacks. Phishing is a special and very successful type of phishing. Around 90% of attacks on a company begin with a phishing e-mail. In order to cover this incidence vector comprehensively, we divide this AddOn module into two sub-modules. The sub-modules can also be ordered separately, but always require at least the Basic+ module.
In order to make the campaign appear as authentic as possible, SECUINFRA (or the customer) registers a previously agreed domain.
A phishing simulation will run for a period of approx. 10 days in order to reach as many users as possible. The lead time for the start of a campaign is approx. 10 working days.
Once each simulation has been completed, the customer receives a report within 2 weeks. It is also possible to send awareness training to conspicuous users via the O365 Defender.
Vulnerability Management: This additional module can be added to any module. The service is based on the Microsoft Defender Vulnerability Management Plan. This additional module provides an overview of the current vulnerabilities of yoursystems, both inside and outside your environment. The vulnerabilities identified are also used to evaluate the alarms and possible incidents from the aforementioned modules.
Our experts are on duty for you around the clock. All employees are proven experts in the detection, analysis and defense of cyber attacks. In addition to numerous Microsoft certifications, they also hold vendor-neutral certifications in the areas of threat detection, incident response, digital forensics and malware analysis.
MDR is a security service that optimizes threat detection and response. In the Microsoft context, MDR services leverage platforms such as Microsoft Sentinel, Microsoft Defender, and Azure to effectively monitor, analyze, and respond to security events.
MDR leverages Microsoft Sentinel for SIEM capabilities, Defender for endpoint protection, and Azure for cloud security to create a holistic monitoring and response system.
By integrating MDR with Microsoft tools, organizations can leverage advanced threat detection capabilities that seamlessly integrate with their existing Microsoft infrastructure.
MDR services using Microsoft technologies strictly adhere to Microsoft’s privacy policies and standards and supplement them with their own security protocols and best practices.
Yes, we offer the ability to extend and optimize existing deployments of Microsoft Defender, Sentinel or other Microsoft security tools. We recommend that you inquire directly with us about individual offers and packages.
The cost of an MDR service can vary depending on the size of the organization, the number of endpoints monitored, and specific requirements. We will be happy to advise you on the selection of the optimum license.
Best SIEM consulting/service company in Europe
Market leader in Security Information Event Management (SIEM)
Leading provider of SIEM consulting services in Germany
TOP 10 SIEM consulting/service companies in Europe
Supported by automation and SOAR systems, our specialists quickly categorize, prioritize and triage security incidents. Depending on the agreement with the customer, we escalate the tickets to your employees or take over further processing ourselves.
Escalation and tracking of incidents as well as reporting and automation are our strengths. In the event of a security incident, we contact your specialist departments so that security incidents can be processed quickly and efficiently and further damage can be avoided.
We support you with critical security incidents through incident management, forensics and malware analysis. In addition, we assess your current security situation through threat hunting and integrate threat intelligence where appropriate. Malware infections and major security incidents are routine for our cyber defense analysts.
In order to be able to offer a stable service, all components of the MDR service are monitored at hardware and software level. This also includes the appliances installed at the customer's premises.
Against the backdrop of a constantly changing threat situation, the continuous development of our Managed Detection & Response Services is an integral part of our service. The detection mechanisms and response options are therefore being continuously developed for all customers of our service.
As a customer, you will be informed about these further developments as part of our regular service reviews and can also use this progress to prove compliance with compliance requirements (e.g. VAIT, BAIT, TISAX, ISO27001) or legal requirements such as KRITIS.
Contact form at the bottom of the page
"*" indicates required fields
©2024 SECUINFRA GmbH. All rights reserved.