Bulletproof 365 Enterprise: MXDR Service (Sentinel and Defender for Cloud)

Bulletproof Solutions Inc.

With the combination of SIEM+DfC, Bulletproof 365 Enterprise is a seamless, intelligent end-to-end managed security service for Microsoft-powered organizations in one cost-effective package.

Get assistance with protecting your VM's and on premises environments by getting assistance in adding Defender for Cloud to protect Servers, Storage, SQL, and setup alerts into Microsoft Sentinel leveraging Bulletproof's B365 Enterprise:

Bulletproof 365 Enterprise Managed Security Service features include:

  1. A scalable, cloud-native Security Information and Event Management (SIEM) and Security Orchestration Automation and Response (SOAR) solution, which delivers intelligent security analytics and intelligence across the enterprise, providing a single solution for alert detection, threat visibility, proactive hunting and threat response via Microsoft Sentinel
  2. Implementation of Defender suite of products within your organization’s environment as per defined best practices.
  3. Security policy and rule management - the ongoing maintenance of security event monitoring policies and rules and their alignment with customer security policy and rules, the maintenance of the default, vendor-supplied threat detection signatures and rules, and development and maintenance of customer-specific custom-built rules.
  4. 24x7x365 monitoring - the generation of alerts when security events are detected, and the generation of alert notifications.
  5. Data collection - the collection of logs from monitored devices. This may utilize an on-premise, log event collector appliance.
  6. Security event analysis and validation - automated normalization of events and data; data correlation and automated analysis to detect security threats; event correlation and reduction; and validation of threats.
  7. Security Threat Intelligence, Trend Analysis and Threat Hunting - Security Analyst-led, manual, proactive historical trend analysis, active discovery, and identification of risks and intrusions from network or host-based sensors and logs and other Bulletproof sources.
  8. SIEM tuning in an effort to reduce false positives.
  9. SIEM-based event and log data storage and archival
  10. 24x7x365 incident response and management - the creation, classification, prioritization, triage, and escalation of incidents for subsequent threat elimination or containment.

Note: Duration and value to be determined at time of scoping