24-hours

24/7 SOC

professional

SECURITY EXPERTS

union-jack (1)

UK BASED

hand-finger-pressing-a-circular-ring-button

ENTERPRISE SOLUTION

pound-sterling

COST EFFECTIVE

You are here:

CYBERSHIELD MDR-COMPLETE

The deep detect & response advantage

Our London based managed detection and response complete service (MDR-COMPLETE) is the ultimate CYBERSHIELD package that we offer. Including a full range of features that works perfectly in any network environment from on-premise to full cloud deployment and even monitors remote workers fully no matter where they are.

CYBERSHIELD MDR-COMPLETE is designed to deliver effective and comprehensive cyber security for an organisation of any size. Functioning as your company’s own 24/7 cyber security operations centre, CYBERSHIELD MDR-COMPLETE monitors critical network infrastructure and endpoint assets, proactively hunting for threats and providing actionable remediation when required. It also includes protection for all laptop and mobile devices which are used remotely away from the office.

This fully managed service combines the benefits of the CYBERSHIELD MDR-ENDPOINT & MDR-NETWORK packages with additional email protection, cloud security, security policies, external vulnerability scanning, penetration testing and application whitelisting.

MDR-COMPLETE is our flagship service and with good reason.

MDR-COMPLETE FEATURES

ASSET DISCOVERY

It’s a problem when you don’t know who and what is on your network or cloud environments. It’s also a problem when you don’t know how those assets are configured. It’s vital to always know who and what is accessing your network at all times – it’s a big step in the right direction to staying protected. Our technology uses Active and Passive techniques to identify assets and all the associated information

SIEM & LOG MANAGEMENT

Our Security Information and Event Management (SIEM) is at the heart of our CYBERSHIELD platform and allows our 24/7 SOC to monitor your assets, network, infrastructure and applications. Our SIEM goes far beyond a traditional SIEM solution and allows us to search and visualise your security data which cuts down investigations down to hours not months and allows for 20x faster investigations and incident response

INTRUSION DETECTION SYSTEM

Network Intrusion Detection is applied at the network and asset level and allows our SOC to hunt for known and unknown threats such as polymorphic worms. Our intelligence feed IDS system can hunt for known and unknown threats and this is backed up by our highly skilled analysts who are constantly hunting for new types of attacks and indicators.

DECEPTION TECHNOLOGY

Our platform comes fully loaded with the latest deception technology which include honeypots, honey files, honey users and honey credentials. This allows us to monitor critical file locations but also the endpoints as we also inject fake credentials onto endpoints to deceive attackers and will be alerted when they are harvested and used.

CONTINUOUS VULNERABILITY SCANNING

We run continuous vulnerability scans of your entire network which include all assets whether they are inside or outside of the network. Assets outside (remote workers) are always included in these scans thanks to our insider agent that keeps all assets connected 100% of the time. These scans are vital and work with our patch management program in order to keep all assets up to date and ensure there are no weaknesses within your environment.

USER & ATTACKER BEHAVIOUR ANALYTICS

User Behaviour Analytics (UBA) allows us reliably detect attackers masking as company employees. Attackers are now compromising assets not only via malware, but by moving laterally between them using stolen credentials. Attack Behaviour Analytics (ABA) is a human problem that can only be truly defeated by humans. Our expert analysts working in our SOC live and breath attacker behaviour every day. Our analysts craft new detentions to catch attacker behaviour based on their findings, and this evolving library comes in CYBERSHIELD.

DARK WEB MONITORING

Our platform comes fully loaded with the latest deception technology which include honeypots, honey files, honey users and honey credentials. This allows us to monitor critical file locations but also the endpoints as we also inject fake credentials onto endpoints to deceive attackers and will be alerted when they are harvested and used.

PATCH MANAGEMENT

We run continuous vulnerability scans of your entire network which include all assets whether they are inside or outside of the network. Assets outside (remote workers) are always included in these scans thanks to our insider agent that keeps all assets connected 100% of the time. These scans are vital and work with our patch management program in order to keep all assets up to date and ensure there are no weaknesses within your environment.

ENDPOINT DETECTION & RESPONSE (EDR)

CYBERSHIELD MDR-ENDPOINT employs an Endpoint Detection and Response (EDR) application to record endpoint system-level behaviours and events. Using known indicators of compromise (IOC) and behaviour analytics techniques, the EDR software continually searches the data to identify early signs of attacks

NEXT GENERATION ANTIVIRUS (NGAV)

Cyber attacks have grown more advanced and traditional signature – based antivirus software is no longer effective. Today’s attackers use file less malware, zero-day exploits and advanced persistent threats. Our Next Generation Antivirus software continuously monitors the processes occurring on an endpoint device and blocks attacks before they compromise your system

ADVANCED THREAT HUNTING

Today’s cyber criminals launch highly targeted attacks to gain valid credentials and become ‘insiders’ within your network. Threat hunting is performed by our experts from our SOC and is the active pursuit of abnormal activity on servers and endpoints that may be signs of compromise. The common approach to intrusions is to respond after getting an alert. But by then, attackers could be inside your systems for months before you know it.

REAL-TIME LIVE RESPONSE

Our platform features industry-leading detection and response capabilities that reveal threat activity in real time, so we can respond to any type of attack as soon as it’s identified. We can visualise every stage of the attack to uncover root cause in minutes. Ability to isolate hosts, blacklist applications or terminate processes is just a few built in tools at our disposal.

CAPTURE AND ANALYSE

We capture and store all unfiltered data from every endpoint so that we can analyse each event stream in context and uncover emerging attacks that others would miss. We analyse all endpoint activity against signatures, reputation, and 110+ core behaviours used by attackers.

OTHER MDR SERVICES WE OFFER

test1

MANAGED DETECTION AND RESPONSE

ENDPOINT

CYBERSHIELD MDR-ENDPOINT is a fully managed service that combines cutting-edge technology, experienced security professionals, and the latest global cyber threat intelligence information needed to hunt, identify and remediate cyber attacks on all endpoint devices.

MORE INFO
Asset 6@4x

MANAGED DETECTION AND RESPONSE

NETWORK

Our MDR-NETWORK package works perfectly in any network environment; from on-premise to full cloud deployment and even monitors remote workers, no matter where they are.

MORE INFO
Asset 10@4x

MANAGED DETECTION AND RESPONSE

INSIDER

Functioning as your company’s own cyber security operations centre (SOC), our leading insider threat detection and prevention service will continuously and automatically monitor all user activity to prevent any cyber security threats.

MORE INFO

To find out how Wizard Cyber can help you, enter your details in the form and we’ll get in touch.

Loading
Snow Owl Red Eyes Perch Small