Skip to main content

Beta Help us improve the Digital Marketplace - send your feedback

INTEGRITY360 LIMITED

Managed Security Incident Event Management (SIEM) Service

Our Managed SIEM service ensure the effective management and maintenance of a scalable SIEM platform and continuously evolving use case catalogue. We offer SOC incident analysis for any alerts generated where our security experts advise on security incident response.

Features

  • SIEM Platform Management and Support
  • Remote monitoring and security event management
  • Security Incident Detection and Mitigation Advisory
  • Major Security Incident Escalation Communication Process
  • Security alert acknowledgement and triage with stringent SLA
  • Use Case Catalogue for SIEM Correlation Searches
  • Customer facing SIEM Dashboard for view of alerts/ events
  • Monthly Security Governance

Benefits

  • Assurance client’s environment is monitored by expert security analysts
  • 24x7 monitoring and security event management
  • 24x7 incident detection, triage and investigation with recommended mitigation actions
  • Customer notification under defined communication workflow process
  • Utilisation of best-in-class SIEM Use Case Catalogue
  • Log Correlation, Management and Retention enabling any incident investigation
  • Threat Intelligence to notify on emerging threats
  • Expert SIEM engineering support with defined Response and Resolution SLA
  • Ongoing maintenance, including regular patching (minor upgrades) and tuning

Pricing

£2,409.50 a unit a year

Service documents

Request an accessible format
If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at bidreviewboard@integrity360.com. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 14

Service ID

2 2 7 2 4 1 9 3 2 7 6 0 0 2 2

Contact

INTEGRITY360 LIMITED Paul Momirovski
Telephone: +44 20 3397 3414
Email: bidreviewboard@integrity360.com

Planning

Planning service
Yes
How the planning service works
Integrity360’s Managed SIEM Services can be provided for both new and existing platforms, deployed as turnkey cloud based SIEM-as-a-service or fully architected on public or private cloud.

The architectural design, planning and deployment is carried out by our experienced SIEM security consultants. Our experts will advise, define, deploy, and configure the platform with relevant use cases in consultation with customer and according to industry best practices.
Planning service works with specific services
Yes
Hosting or software services the planning service works with
  • Microsoft Sentinel
  • Rapid7
  • Splunk
  • Fortinet

Training

Training service provided
No

Setup and migration

Setup or migration service available
Yes
How the setup or migration service works
If migrating to the cloud or looking to change service, Integrity360 has the security consultants to advise on suitable security solutions for all major platforms.

All services can be delivered on existing architecture or can migrate from on premises deployments to cloud or between public cloud providers or between vendor solutions
Setup or migration service is for specific cloud services
Yes
List of supported services
  • Microsoft Sentinel
  • Rapid7
  • Splunk
  • FortiSIEM

Quality assurance and performance testing

Quality assurance and performance testing service
Yes
How the quality assurance and performance testing works
All services are subject to a rigorous service transition process to ensure standardized and repeatable control of activities undertaken to onboard new services.
Implementation of agreed upon SIEM technology and platform features and completion of build, test and verify stages with basline tuning carried out in early life service.
Ongoing service includes a service delivery management function providing:
• Oversight and assurance of Service Deliverables
• Production and delivery of Service reports
• Escalation management
• Continual Improvement

Integrity360 offer a range of quality assurance and performance testing including:
• Review of Use Cases
• Security Checkups
• Pentesting
• Vulnerability Scanning
• Policy reviews
• Configuration audits
• Patch audits
• Licencing audits
• Performance Reviews
• Best practice and compliance checks

Security testing

Security services
Yes
Security services type
  • Security strategy
  • Security risk management
  • Security design
  • Cyber security consultancy
  • Security testing
  • Security incident management
  • Security audit services
Certified security testers
Yes
Security testing certifications
  • CREST
  • Cyber Scheme

Ongoing support

Ongoing support service
Yes
Types of service supported
  • Buyer hosting or software
  • Hosting or software provided by your organisation
  • Hosting or software provided by a third-party organisation
How the support service works
Available ongoing support options for Managed Services and Technical support services.
Variety of implementation options including hosted platform as a service or support for public cloud IaaS and PaaS Implementation across Splunk and Azure Sentinel. Other SIEM platforms may be accommodated on request.

Supported Deployment Types:
• Physical On-Prem/ Datacentre
• Virtual On-Prem/ DataCentre
• Public Cloud
o Microsoft Azure
o AWS
o Google Cloud

Service scope

Service constraints
• Security incident response, forensic analysis and remediation of security incidents are not included with this service (IR Services Available)
• All support services are provided remotely via the Integrity 360 SOC

User support

Email or online ticketing support
Email or online ticketing
Support response times
The Managed SIEM Service Window is 24 X 7 X 365 (24 hours a day, 7 days a week, 365 days a year). The service window means operation of the SOC and Service Desk to monitor the customers estate, respond to alerts, and respond to tickets logged.

Alerts with a Critical Severity acknowledged within 15mins and triaged within the hour. Alerts with a High Severity are acknowledged within 30mins and triaged within 2 hours.
P1 tickets are responded to within 15mins and resolved within 4 hours of continuous effort.
Service Requests are responded to within 1 business day
User can manage status and priority of support tickets
Yes
Online ticketing support accessibility
WCAG 2.1 AA or EN 301 549
Phone support
Yes
Phone support availability
24 hours, 7 days a week
Web chat support
No
Support levels
There are two tiers of Managed Services and Technical Support Services available.
• Managed SIEM
• Managed SIEM Enhanced
• SIEM Technical Support Services

Managed SIEM is a service for standing up a robust SIEM platform with ongoing maintenance, management, and platform performance monitoring. ----

Managed SIEM enhanced provides the same level of platform management and support but adds security alert triage and incident investigation by our expert SOC security analysts. ----

SIEM Technical Support Services are suitable for customers who wish to retain the day-to-day management of the SIEM platform but wish to augment their own capability with Integrity360’s deep expertise. ----

Note: See attached Service description for full list of features for each service tier

Resellers

Supplier type
Reseller providing extra features and support
Organisation whose services are being resold
Microsoft, Rapid7, Splunk, Fortinet

Staff security

Staff security clearance
Conforms to BS7858:2019
Government security clearance
Up to Developed Vetting (DV)

Standards and certifications

ISO/IEC 27001 certification
Yes
Who accredited the ISO/IEC 27001
Certification Europe
ISO/IEC 27001 accreditation date
25/10/2022
What the ISO/IEC 27001 doesn’t cover
N/A
ISO 28000:2007 certification
No
CSA STAR certification
No
PCI certification
No
Cyber essentials
Yes
Cyber essentials plus
No
Other security certifications
No

Social Value

Social Value

Social Value

  • Covid-19 recovery
  • Tackling economic inequality
  • Equal opportunity
  • Wellbeing

Covid-19 recovery

Integrity360 has initiated several activities in support of the Covid-19 recovery. These include:
• The establishment of the organisation’s own committee to develop and review short-, medium- and long-term strategies,
• Employment, retraining and opportunities to return to work for those left unemployed by COVID-19
• Supporting people and community recovery from the impacts of COVID-19
o Being responsive and adaptable to the results of any community consultation or engagement,
o Activities taken to raise awareness of or take action to deliver the outcome based on the understanding of the identified community’s needs, for example raising awareness (staff, suppliers, or community) of how to operate or use services safely,
• Supporting organisations and businesses to recover from the impacts of COVID-19, including new ways of working to deliver services
• Supporting the physical and mental health of people affected by COVID-19, including reducing the demand on health and care services
o Measuring staff’s physical and mental health and wellbeing engagement and adapting to any changes in the results
• Improving workplace conditions, including effective social distancing, remote working, and sustainable travel solutions
o The phased return to work, new signage, new equipment, and cleaning stations
o The review of the organisation’s business continuity and disaster recovery

Tackling economic inequality

Integrity360 has initiated several activities in support of tackling economic inequality. These include:
• Entrepreneurship, growth, and business creation,
o Identifying opportunities to grow diversity in the supply chain and in the community where contracts are performed, including SME and VCSE participation and new business creation,
• Employment,
• Education and training,
• Creating a diverse supply chain to deliver contracts,
o Structuring of the supply chain selection process in a way that ensures fairness and encourages participation by a diverse range of businesses,
• Supporting innovation and disruptive technologies throughout the supply,
o An understanding of opportunities to drive innovation and greater use of disruptive technologies, green technologies, efficiency, and quality to deliver lower cost and/or higher quality goods and services,
• Support the development of scalable and future-proofed new methods to modernise delivery and increase productivity,
• Demonstrating collaboration throughout the supply chain, and a fair and responsible approach to working with supply chain partners in the delivery of contracts,
• Demonstrating action to identify and manage cyber security risks in the delivery of contract,
o A commitment to adopting technical standards and best practice, such as the ‘10 Steps to Cyber Security,’ NIST, Cyber Essentials and Cyber Essentials Plus certification, and further frameworks.

Equal opportunity

Integrity360 complies with all the equal opportunities laws in the jurisdictions in which it operates. The organisation’s social value measures include:
• Supporting in-work progression to help people, including those from disadvantaged or minority groups, to move into higher paid work by developing new skills relevant to the organisation,
o Measures using skill-based assessment tasks in recruitment, and having jobs at all levels open to flexible working from day one,
• Actions to identify and tackle inequality in employment, including skills and pay in the workforce,
o Inclusive and accessible recruitment practices, and offering a range of opportunities with routes of progression if appropriate such as industry placements and students supported into apprenticeships,
• Actions to identify and manage the risks of modern slavery in contracts, including in the supply chain,
o Policies and practices applied for contracts, such as pre-employment checks, to mitigate and manage modern slavery risks,
• Actions to increase the representation of disabled people in the workforce,
o Measures to reduce barriers to securing more jobs for disabled people, for example, inclusive and accessible recruitment practices, and retention-focussed activities,
• Supporting disabled people in developing new skills relevant to contracts, including through training schemes that result in recognised qualifications.

Wellbeing

Integrity360 has initiated several activities in support of wellbeing. These include:
• Supporting health and wellbeing in the workforce,
o Inclusive and accessible recruitment practices, development practices, and retention focussed activities,
o Investing in the physical and mental health and wellbeing of the workforce, for example, by implementing ‘Mental Health at Work commitments,’ and outlining plans to engage the workforce in deciding the most important issues to address,
o Methods to measure staff engagement over time and adapt to any changes in the results,
• Influencing support for health and wellbeing,
o Measures to raise awareness or increase the influence of staff, suppliers, customers, communities and/or any other appropriate stakeholders to promote health and wellbeing, including physical and mental health; for example, through engagement, co-design/creation, training, and education, partnering/collaborating, and volunteering,
• Collaborate in codesign and delivery,
o Support to community-led initiatives, such as reducing loneliness, helping with English language proficiency, and helping meaningful social mixing among people with different backgrounds,
o Applicable employee volunteering schemes,
• Influence to support strong, integrated communities,
o Measures to raise awareness or increase the influence of staff, suppliers, customers, communities, and stakeholders to promote strong, integrated communities, for example, through engagement, training, partnering/collaborating, and volunteering.

Pricing

Price
£2,409.50 a unit a year
Discount for educational organisations
No

Service documents

Request an accessible format
If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at bidreviewboard@integrity360.com. Tell them what format you need. It will help if you say what assistive technology you use.