Sapphire

Managed Extended Detection and Response (MXDR)

Monitors your infrastructure, SaaS, PaaS, IaaS, remote and mobile systems, detecting and responding to mitigate cyber threats. The service is within Microsoft Azure enabling your investment to be fully leveraged including automation and integration, enrichment and correlation of incidents, threat intelligence, containment of devices and identities, and incident response.

Features

• 24x7x365 monitoring, detection and response to mitigate cyber risk
• Full client transparency and retained ownership of all content
• Threat Modelling to align the service to each customers risks
• Dedicated Technical Account Manager as your security champion
• Monitoring, alerting and review of Microsoft ingest cost efficiency
• Custom queries, use cases, dashboards/workbooks and automation playbooks
• Fully integrated threat intelligence with analysis and detection integration
• Scheduled and ad-hoc Threat hunting detects incidents without alerts
• Full SOAR automation and ITSM integration
• Coverage of all sources including Microsoft, multicloud, infrastructure and SaaS

Benefits

• Pipeline deployment reduces your risk by onboarding SOC in hours
• Reduce your costs by efficient transparent ingest monitoring and alerting
• Mitigate incident impact through active responses under your governance
• Tailoring service to your cyber risk reduces risk and cost
• Dedicated TAM goes beyond monitoring to improve your security posture
• Leverage your Microsoft and other security investments, increasing ROI
• Understand posture and evidence compliance, minimising effort with custom reports
• Automated enrichment means we respond quickly and accurately to events
• Support learning and development of your resources through embedded transparency
• Retain value. Keep all custom content created for your organisation

£4,500 a unit a month

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at katie.smith@sapphire.net. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 14

Service ID

918886913853604

Contact

Katie Smith
0845 58 27001
katie.smith@sapphire.net

Planning

• Planning service: No

Training

• Training service provided: Yes
• How the training service works: We provide training and familiarisation at onboarding time supported by onboarding documents and regular familiarisation at monthly and regular client meetings
• Training is tied to specific services: No

Setup and migration

• Setup or migration service available: No

Quality assurance and performance testing

• Quality assurance and performance testing service: Yes
• How the quality assurance and performance testing works: We are happy to reference other customers. For performance testing we can test processes and playbooks at onboarding stage.

Security testing

• Security services: Yes
• Security services type:
  • Security strategy
  • Security risk management
  • Security design
  • Cyber security consultancy
  • Security testing
  • Security incident management
  • Security audit services
• Certified security testers: Yes
• Security testing certifications:
  • CHECK
  • CREST
  • Other
• Other security testing certifications:
  • OSCP
  • OSCE
  • CISSP
  • CEH

Ongoing support

• Ongoing support service: Yes
• Types of service supported:
  • Buyer hosting or software
  • Hosting or software provided by your organisation
  • Hosting or software provided by a third-party organisation
• How the support service works: We support multiple clouds by providing connectors to these platforms in the client environment or by parsing native logs from the cloud platforms.

Service scope

• Service constraints: The client must have an Azure tenant on which to load their logs and grant access to our SOC via lighthouse

User support

• Email or online ticketing support: Email or online ticketing
• Support response times: We triage all incidents and requests within 15 minutes, and respond according to SLA priorities
• User can manage status and priority of support tickets: Yes
• Online ticketing support accessibility: None or don’t know
• Phone support: Yes
• Phone support availability: 24 hours, 7 days a week
• Web chat support: Web chat
• Web chat support availability: 24 hours, 7 days a week
• Web chat support accessibility standard: None or don’t know
• How the web chat support is accessible: Keyboard shortcuts, captions and transcriptions, screen reader, voice control, magnify screen content, use high contrast colour.
• Web chat accessibility testing: N/A
• Support levels: We provide one level of support 24x7x365 with full technical account management, analysis and engineering

Resellers

• Supplier type: Reseller providing extra features and support
• Organisation whose services are being resold: Microsoft Sentinel

Staff security

• Staff security clearance: Conforms to BS7858:2019
• Government security clearance: Up to Security Clearance (SC)

Standards and certifications

• ISO/IEC 27001 certification: Yes
• Who accredited the ISO/IEC 27001: SGS
• ISO/IEC 27001 accreditation date: 12/09/23
• What the ISO/IEC 27001 doesn’t cover: N/A
• ISO 28000:2007 certification: No
• CSA STAR certification: No
• PCI certification: No
• Cyber essentials: Yes
• Cyber essentials plus: Yes
• Other security certifications: Yes
• Any other security certifications:
  • OCSP
  • CISSP
  • OSCE
  • CEH

Social Value

• Social Value:

  Social Value

  • Fighting climate change
  • Covid-19 recovery
  • Equal opportunity
  • Wellbeing

  Fighting climate change

  We make sure that we recycle where we can and take appropriate modes of transport to get to clients. Our offices in Darlington and Glasgow are easily accessible by public transport meaning that many of our colleagues go to an office by these means. For other colleagues, we offer remote working, and colleagues are able to attend an office when they need We are pricing our services to encourage customers to prefer remote access and remote working where possible. One of Sapphire staff is undertaking a part time PHD studying the carbon consequences of cyber crime and it’s mitigation which is inclusive of Sapphire customers and partners.

  Covid-19 recovery

  We have encouraged our staff back to office working especially in the SOC which runs 24*7 shift patterns. We have recently engaged in local communities by hiring space in local charity buildings for company meetings as in house face to face meetings. We have performed pro-bono work with charities to check their security status and help them move onwards from Covid in the face of increased cyber attacks on charities.

  Equal opportunity

  We have an Equal Opportunities policy which everyone in Sapphire adheres to. We are currently at 29% of females in our organisation, a number that has grown over the last few months. Our recruitment processes allow us to interview the best people for the roles we have available, and we insist on 50:50 short-lists for all roles. We value the views of others and see as a strength our openness to challenge. We employ military reservists, and are supportive of their overseas deployment commitments on behalf of HM Government. Recently we have signed documentation to join the NCSC Cyber First scheme to help young people especially women and girls to join the ranks of cyber professionals. We also mentor young people who are keen to move into cyber at some stage in their career.

  Wellbeing

  We take the wellbeing of our colleagues seriously; we offer an Employee Assistance Programme, have health cover, a pension scheme and Life Cover. We also provide opportunities for colleagues to Give Back to local projects/schemes and they can use a day a year to do this.

Pricing

• Price: £4,500 a unit a month
• Discount for educational organisations: No

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at katie.smith@sapphire.net. Tell them what format you need. It will help if you say what assistive technology you use.