Managed Microsoft Sentinel: 1 Year Implementation

CGI is a leading Managed Security Services Provider (MSSP) & named a leader in the IDC Cybersecurity Marketscape.

“CGI maintains one of the biggest security teams in Canada, and one out of CGI's nine SOCs (security operation centers) worldwide is in Canada,” writes Yogesh Shivhare, research manager at IDC Canada. “The company leverages its national and global security capabilities to offer a one-stop shop for end-to-end solutions to support customers' ecosystems across the value chain. CGI can bring together multidisciplinary teams to deliver complex digital transformation projects for clients with integrated security.”

Over the last 30 years CGI has been delivering end to end Managed SIEM solutions from readiness assessment, to identifying security gaps & implementation combining on-premise and cloud security logs and signals for its customers across industries, driving active containment and response.

What's included:

• Azure Sentinel platform installation
• Enablement of 1st party data connectors (Azure Active Directory, Azure AD Identity Protection, Azure Activity, Defender 365 connectors, Security Events)
• Add relevant workbook and analytic rules
• Deploy security monitoring for on-premises and cloud servers
• Provision of Syslog collector for Syslog/CEF log sources
• Enablement of 3rd party connectors specific to customer environment.
• Perform scope assessment
• Review of log sources,
• Perform review of ingestion/consumption cost, suggestion of commitment tier
• Review coverage of log sources, heartbeat of servers, firewalls, applications
• Integration with CGI SOC tools
• Adding SOAR capabilities (Automation and playbooks)
• Triage and investigate incidents

Benefits:

• Perform cloud based Threat hunting, import IoCs (indicators of compromise) and incorporate them
• Investigate potential threats aligning with MITRE ATT&CK™ techniques.
• Guided remediation
• Guidance on control improvements following alerts
• Guidance on containment, remediation, interim protective measure and control improvements.

Our Differentiators:

• Collaborative approach to understand your network environment and traffic patterns in order to provide high-fidelity reporting and detection
• Global presence provides 24x7x365 monitoring and detailed security and threat analysis
• Experienced response capability to mitigate cyber threats
• Continuous health checks and fine tuning to Microsoft Sentinel solution (for connectors, analytic rules, log sources and cost optimization).

A customer can start with our Essential tier and pick services from service catalogue as per the requirement

*Note: Price estimation will be based on scope

Learn more about CGI Cybersecurity Services: https://www.cgi.com/en/cybersecurity
Contact link : GlobalCyberSecurity@CGI.com
Support link: https://www.cgi.com/canada/en-ca/cybersecurity"