Next Gen SOC Services - MSSP
Next generation AI based security alerts monitoring and incident response services, for proactive defense against malware, phishing, ransomware, data exfiltration, data breach, brute force attack, mail encryption, etc.
From small businesses to enterprises, we take care of detection and response for security breach attempts and vulnerabilities
Features
- Incident detection, response and handling
- 24x7 Alerts monitoring on SIEM and MDR
- Threat intel, analytics, hunting and IOC extraction
- Log Source Management [including On-boarding and Off-boarding]
- Incident triaging and Escalation management processes
- MITRE ATT&CK (ATTACK) framework aligned SOC processes
- Daily & Monthly SOC performance score card & KPIs
- Incident Response workflows, Training procedures, playbooks and artefacts
- Brand Monitoring & Domain Squatting
Benefits
- Certified security experts with up-to-date knowledge
- Cloud-based scalable log aggregation & correlation platform
- Next Gen AI -ML correlation engine for anomaly detection
- Custom apps and connectors developed for all data sources
- Out of Box and curated use cases for global compliances
- Industry specific threat assessment and SOC maturity framework
- Driven by rigorous process and optimization levers
- Harness the power of Machine Learning (ML) capabilities
Pricing
£49 a user a month
Service documents
Request an accessible format
Framework
G-Cloud 13
Service ID
1 8 8 4 1 8 6 2 0 3 4 1 6 7 8
Contact
POSITKA
Alok Agarwal
Telephone: +447459429719
Email: alokagarwal@positka.com
Planning
- Planning service
- Yes
- How the planning service works
- Multiple options to integrate data sources : agent based collectors , API integration or syslog servers can be used
- Planning service works with specific services
- No
Training
- Training service provided
- Yes
- How the training service works
- We provide operational and technical training for SIEM and SOAR platform, which can be tailored to meet specific customer requirements.
- Training is tied to specific services
- No
Setup and migration
- Setup or migration service available
- Yes
- How the setup or migration service works
-
Our Splunk Cloud migration offering leverages Splunk recommended best practices to provide guidance and effectively transition from an on-premise installation to Splunk Cloud.
For Splunk Enterprise, we also offer migration from on-prem to public cloud, on-prem to private cloud, and cloud to cloud. - Setup or migration service is for specific cloud services
- Yes
- List of supported services
-
- AWS
- Azure
- GCP
- Private Cloud
- Public Cloud
- Security logs from all IAAS, PAAS, SAAS & On-premise services
Quality assurance and performance testing
- Quality assurance and performance testing service
- Yes
- How the quality assurance and performance testing works
-
We follow a robust and well-defined process for all migrations and greenfield projects. Project management framework practices are deployed. This is supported by a well-defined Work Breakdown Structure (WBS), which factors in sufficient time to complete and review all tasks. In addition, there are rigorous QA stage gates throughout the project lifecycle which apply for artefacts related to documentation, coding and testing. We also leverage a well defined test plan which covers both functionality and performance considerations.
In BAU state, SOC performance KPIs definition and reporting frequency are mutually agreed with customers. Periodic table top exercise on incident responses for various security incidents can be arranged and test report is shared
Security testing
- Security services
- Yes
- Security services type
-
- Security strategy
- Security risk management
- Security design
- Cyber security consultancy
- Security incident management
- Security audit services
- Other
- Other security services
-
- Managed Security Operations Centre
- Threats assessment
- Vulnerability Assessment
- Brand Monitoring
- SOC maturity assessment and roadmap
- Cloud security strategy
- Training and Awareness
Ongoing support
- Ongoing support service
- Yes
- Types of service supported
-
- Buyer hosting or software
- Hosting or software provided by your organisation
- Hosting or software provided by a third-party organisation
- How the support service works
- All cloud services used to provide a full managed SOC service are supported.
Service scope
- Service constraints
- Standard services are delivered remotely. Premium on-site services are available subject to specific requirements and based on mutual discussion.
User support
- Email or online ticketing support
- Yes, at extra cost
- Support response times
- Within 24 Hrs. SLAs and turnaround times are mutually defined based on specific support requirements.
- User can manage status and priority of support tickets
- No
- Phone support
- Yes
- Phone support availability
- 24 hours, 7 days a week
- Web chat support
- No
- Support levels
-
Tier 1 : Basic help-desk issues resolution and service-desk support
Tier 2 : In-depth technical support
Tier 3 : Expert product and service support
Resellers
- Supplier type
- Not a reseller
Staff security
- Staff security clearance
- Conforms to BS7858:2019
- Government security clearance
- Up to Baseline Personnel Security Standard (BPSS)
Standards and certifications
- ISO/IEC 27001 certification
- No
- ISO 28000:2007 certification
- No
- CSA STAR certification
- No
- PCI certification
- No
- Cyber essentials
- Yes
- Cyber essentials plus
- No
- Other security certifications
- Yes
- Any other security certifications
-
- CRISC
- CISM
- EC Council CEH
- CompTIA+ Security
- Cyber Essentials
Social Value
- Fighting climate change
-
Fighting climate change
Positka encourages employees, associates and suppliers to undertake thoughtful actions for environmental protection and improvement. This includes (but not limited to) the following:
a) Encouraging volunteering undertaking activities of direct positive change, such as tree plantation drives in fragile regions, awareness creation.
b) Encourage use of public transport and cycling to work, over personal cars
c) Reduce wastage, increase reuse and recycling wherever feasible - Covid-19 recovery
-
Covid-19 recovery
Positka is supporting communities in Covid-19 recovery, where feasible. The initiatives include supporting people impacted by Covid finding it difficult to get back into employment. Towards this, Postika has a continuous and open hiring process for trainees and apprentices in multiple disciplines. - Tackling economic inequality
-
Tackling economic inequality
Positka is committed to tackling economic inequality. The activities and measures supporting this social value include: - providing paid internships of up to 6 months - widely advertising job opportunities - encouraging associates to continue education to enhance career options - Equal opportunity
-
Equal opportunity
Positka is committed to supporting equal opportunity and providing everyone equal access to achieve their potential. Some of the ways that Positka supports this are as follows: - skills based interviews and evaluation - conducting awareness sessions across the organization on working with people with disabilities - working with third party organizations to support programs for employment for people with disability, such as purchasing from such programs - Wellbeing
-
Wellbeing
Positka is committed to enabling better health and wellbeing across the community. Some of the ways in with Postika supports this are as follows: - providing facilities at work for recuperation and rejuvenation - team-based non-work activities to encourage mixing of people with diverse background, to help reduce risk of loneliness, for example.
Pricing
- Price
- £49 a user a month
- Discount for educational organisations
- No