Managed Detection And Response Services

The mission of CIT’s MDR service is to leverage our cyber security experts to collaboratively build each customer’s cybersecurity decision-making and maturity through our personalized guidance. We are a true extension of our customer’s security team. Our goal is to partner together to enhance our customer’s ability to detect and respond to threats with hands-on 24x7x365 monitoring, threat hunting, incident response, and customized security guidance to stop malicious activity and strengthen each customer’s security posture. This document will outline the scope of our MDR service including:

  • Monitor the customer’s environment in accordance with the detection methodologies outlined in this Scope of Service and with the visibility provided by the CIT’s MDR technology stack (IDR + NDR + EDR) and in conjunction with the information collected from additional technology in the customer's organization.
  • Provide a knowledgeable information security professional with subject matter expertise in the deployed product to assist with the configuration of required features.
  • Provide a dedicated lead security analyst as the point-of-contact for the MDR relationship and help to accelerate the customer’s security maturity.
  • Perform Remote Incident Response engagement in addition to standard alert and incident investigations.
  • Provisioning and ongoing management of SIEM components in the technology stack.
  • Customize the Reporting module with unlimited reports capability to customers as well as monthly scheduled reports in accordance with this Scope of Service.
  • Ensure PCI Compliance with One Year Data storage and Retention.
  • API Integration capability with End Point Management Console.
  • API Integration capability with End Point Management Console.
  • File Integrity Monitoring
  • Incident Response Services and Forensic Analysis.
Following detection methodologies are employed by our MDR solution:
  • User Behavior Analytics
  • Attacker Behavior Analytics
  • Network Traffic Analysis
  • Threat Intelligence Detections (Intel) with global database
  • Ongoing Threat Hunts (Hunts)
2020 © Cira InfoTech. All Rights Reserved.