Claranet Limited

Endpoint Detection & Response (EDR)

EDR enables you to continually hunt, detect, analyse, and remediate threats, so you can protect your organisation from cyber attacks before they can evolve.

A team of experienced security analysts, working 24/7/365, triage and remediate any threats you face. They investigate all alerts, quarantine threats, and remove attackers from endpoints.

Features

• Realtime monitoring and detection of malicious events
• Fully monitored managed service including 24/7/365 response
• Easy deployment across on-premise and cloud estates
• Behavioural AI tracking all system activities
• Investigate security incidents
• Analyst-driven investigation assesses the threat based on indicators of compromise
• Eradication of cyber attackers, malware and ransomware
• Provide remediation guidance
• Monthly security reporting, including incident details and security-related data

Benefits

• Minimise the disruption of cyber-attacks, reducing the risk of fines/ransoms
• Stay ahead of attacker TTPs with proactive threat-hunting
• Detect suspicious activity and stop breaches before they evolve
• Real-time investigation of security alerts
• You receive valuable information and or remediation
• Threats are visualised in a detailed timeline
• Instant alerts keep you informed of an attack
• Experienced security analysts/threat hunters triage alerts and assess severity/risk
• Threat intelligence/threat hunting will detect the most novel attacks
• In-depth investigation and remediation to suspicious activity

£20,000 to £250,000 a unit a year

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at UK-bidteam@claranet.com. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 14

Service ID

997627575495159

Contact

Claranet UK Bid Team
020 7685 8000
UK-bidteam@claranet.com

Planning

• Planning service: Yes
• How the planning service works: We help you with deploying the EDR platform and use our expertise to configure it to your business and its data. This ensures you get relevant and practical alerts to help you stop attacks early before they can progress to inflict even greater damage.; The initial scoping call identifies the drivers and requirements, needs analysis, and design considerations including endpoints/applications excluded from the scope or other tuning requirements, ensuring optimal protection capabilities are combined with optimal system performance. ; A solution design is drafted including documentation of the agents to be deployed and OS’s to be covered across any customers wide and varying infrastructure including on-premise, cloud, hybrid-cloud environments, local and remote end-user workstations, servers, and cloud workloads. This is documented based on discussions around the managed service, escalation paths, authorised points of contact etc. with a success criteria defined for deployment. ; We gather all relevant information and use this to outline design, collection, function of the technology, and service to build a project plan. The project plan includes deployment time frames, phased approaches for large scale deployments and recommendations aligned with best practice. Once a project plan is completed a proof of concept is recommended to validate the design.
• Planning service works with specific services: Yes
• Hosting or software services the planning service works with:
  • Endpoint Detection and Response
  • SIEM as a Service
  • Security Operations

Training

• Training service provided: No

Setup and migration

• Setup or migration service available: Yes
• How the setup or migration service works: Our EDR services support On-Prem, Cloud, Hybrid-Cloud, and Cloud workload environments. We provide a fully guided installation of the advanced AI/ML based software agent to be deployed to these environments to allow us to monitor for Malware, Ransomware, check for malicious activity, perform threat hunting, quarantine files, kill processes, and isolate devices. Our EDR solution can run in parallel with the existing legacy EDR/AV vendor to allow for a smooth and uninterrupted transition between vendor solutions, this process is managed by our Cyber Security Engineering teams.
• Setup or migration service is for specific cloud services: No

Quality assurance and performance testing

• Quality assurance and performance testing service: Yes
• How the quality assurance and performance testing works: EDR ensures an end to end test is completed prior to service launch, this ensures that the technology and service is ready to move to a live state. Quarterly service reporting highlights the quality of the service and keeps the customer informed of any changes. This is a two way service meeting in which customer feedback and ideas are exchanged. SLAs are configured to ensure a consistent and transparent approach to service delivery in terms of quality assurance. Performance testing of the solution can be conducted, with tuning preformed to reduce false positives and noise from the monitoring platform.

Security testing

• Security services: Yes
• Security services type:
  • Security strategy
  • Security risk management
  • Security design
  • Cyber security consultancy
  • Security testing
  • Security incident management
  • Security audit services
  • Other
• Other security services:
  • Vulnerability Assessments
  • Threat Intelligence
  • Continual Security Testing
  • Red Teaming
• Certified security testers: Yes
• Security testing certifications:
  • CHECK
  • CREST
  • Tigerscheme
  • Cyber Scheme
  • Other
• Other security testing certifications:
  • OCSP
  • MS AZ-500
  • MS SC-200
  • AWS Security Specialty
  • SANS-GIAC
  • GMON
  • MS AZ-900
  • MS AZ-104

Ongoing support

• Ongoing support service: Yes
• Types of service supported:
  • Hosting or software provided by your organisation
  • Hosting or software provided by a third-party organisation
• How the support service works: EDR Manages all technology components of the solution and service, for troubleshooting, maintenance issues etc the SOC support every element.

Service scope

• Service constraints: There are no general constraints, however specific constraints may be found during scoping and design exercises.

User support

• Email or online ticketing support: Email or online ticketing
• Support response times: Incidents are categorised by priority or "P" levels and responded to accordingly. For a P1 incident which typically relates to a key system/s being compromised, we would offer an SLA of 15 minutes for an initial response following triage. A P4 which is more likely to informational or low priority to the client would have an SLA of 4 hours for a response following triage.
• User can manage status and priority of support tickets: No
• Phone support: Yes
• Phone support availability: 24 hours, 7 days a week
• Web chat support: No
• Support levels: Full 24/7 365 monitoring and response.

Resellers

• Supplier type: Reseller providing extra features and support
• Organisation whose services are being resold: Sentinel One and Microsoft Defender for Endpoint

Staff security

• Staff security clearance: Conforms to BS7858:2019
• Government security clearance: Up to Developed Vetting (DV)

Standards and certifications

• ISO/IEC 27001 certification: Yes
• Who accredited the ISO/IEC 27001: DAS
• ISO/IEC 27001 accreditation date: 06/06/2023
• What the ISO/IEC 27001 doesn’t cover: N/A
• ISO 28000:2007 certification: No
• CSA STAR certification: No
• PCI certification: Yes
• Who accredited the PCI DSS certification: 7Safe Limited
• PCI DSS accreditation date: 01/2019
• What the PCI DSS doesn’t cover: Our PCI-DSS only covers physical security requirements 1 to 8. 10 and 11 are not covered
• Cyber essentials: Yes
• Cyber essentials plus: Yes
• Other security certifications: Yes
• Any other security certifications: ISO 22301

Social Value

• Social Value:

  Social Value

  • Fighting climate change
  • Equal opportunity
  • Wellbeing

  Fighting climate change

  Sustainability is a core element of our CSR strategy. At Claranet, we recognise the significance of our environmental footprint, even if it’s small, and are dedicated to perpetual improvements in energy conservation and waste minimisation throughout our operations. Our Senior Management Team has defined environmental and energy policies with a structure for setting and revising environmental objectives and goals.; • Our approach to environmental management includes:; • Committing to lessen our environmental impact.; • Integrating environmental performance and management into our business practice.; • Encouraging recycling and eco-awareness across our workforce, clientele, and suppliers.; • Reducing eco-toxic emissions from company vehicles.; • Reducing our energy use.; • Aligning with stakeholders to meet or excel in environmental standards.; • Adhering to applicable environmental laws and regulations.; • Conducting regular audits to measure and report on environmental metrics and establish goals.; Our energy management is focused on:; • Complying with legal standards for energy use.; • Implementing and, where possible, exceeding best practices for energy management.; • Allocating resources to meet our energy objectives and improve our management system continuously.; • Procuring energy-efficient solutions and services when feasible.; • Using data to monitor significant energy use and set targets for reducing consumption across the enterprise.; Our commitment to sustainability is reinforced by certifications such as ISO14001 for Environmental Management, ISO50001 for Energy Management, and the Cisco Environmental Sustainability Specialisation.; Aiming for net zero by 2050, we are proactively seeking ways to achieve this sooner. Our efforts are transparent, with an external Carbon Reduction Plan available upon request.

  Equal opportunity

  Offering the opportunity to advance our people’s professional development is one thing, however, ensuring that everyone, no matter who they are, has that opportunity is something that we pride ourselves on. Diversity and Inclusion is a highly regarded topic at Claranet and one that we strive to work towards. We are committed to driving diversity and inclusion in a measurable way. ; Our HR and Management teams are working closely on diversity and inclusion initiatives to support the reduction in the gap in pay between men and women. We have a group of employees who have volunteered themselves to work together the ensure some of the most meaningful diversity and inclusion dates throughout the calendar year are acknowledged and/or celebrated with the goal of ensuring all of our employees feel a sense of belonging at Claranet. We are a signatory with the Tech Talent Charter (TTC) who pride themselves on bringing organisations together to drive greater diversity and inclusion within the Technology sector. Not only does this support women getting into technology, but those from multi-ethnic and lower socio-economic backgrounds as well. We are excited to be a part of this movement and hope to contribute to making the UK technology sector truly inclusive. We are also one of the founding members of the Technology Community for Racial Equality (T4CRE). We are proud to support this organisation that is focused on promoting diversity, equity, and inclusion in the technology industry (https://tc4re.org/who-we-are/). ; Our recruitment strategy and policy also heavily supports this. The makeup of our Senior Management Team further evidences our commitment to inclusivity, as it continues to represent an equal split between men and women, which is essential to leading a diverse workforce and promoting equality.

  Wellbeing

  Claranet are passionate about people and fostering a healthy and nurturing work environment.; Our dedicated Wellbeing and Engagement team, work in partnership with external providers to deliver our health and wellbeing scheme: Health is Wealth. The scheme is comprised of talks led by professionals, access to exercise classes, discounted gym memberships and access to a fully trained Mental Health First Aiders team. Some of our notable events include, a Stress Awareness seminar, Disability Awareness talk delivered by Lee Spencer, Employee led activity to celebrate Neurodiversity Week, Women in technology celebrations, Happiness in the Workplace celebration week and Imposters Syndrome webinar. Our in-house team plan employee activity based on employee feedback and suggestions, enabling us to deliver a very diverse programme and support network within the workplace.; In conjunction with this we also provide all employees with access to the Employee Assistance Program (EAP). This facility provides an independent, confidential, and unlimited service available 24 hours a day, 365 days a year. It provides access to specialist professionals who offer advice on stress and anxiety as well as a range of other issues such as bereavement support, legal guidance, and health related issues.; Our employees also benefit from core and voluntary benefits including dental cover and private medical that covers pre-existing conditions with a range of options to cover partners or families. Voluntary Critical Illness Cover of up to £150,000 also gives our employees and their families financial and practical support at times of need.

Pricing

• Price: £20,000 to £250,000 a unit a year
• Discount for educational organisations: No

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at UK-bidteam@claranet.com. Tell them what format you need. It will help if you say what assistive technology you use.