Overview

Our Managed Detection and Response offering includes access to a team of professionally-trained security analysts and engineers based within our in-house Security Operations Centre (SOC). These analysts monitor your environment around the clock and provide rapid notification of any potential threats or suspicious activity taking place with your environment.

Security assurance 24 hours a day, 7 days a week, 365 days a year.
A team of specialist security analysts and engineers based at our in-house Security Operations Centre (SOC) to monitor your network around the clock.
When threats are identified, our team will notify you immediately together with the necessary rapid response action required to effectively contain such incidents.
Detection and
Response Objectives
Passively monitor network communications for emerging cyber threats, sensitive data disclosure and critical system vulnerabilities.
Qualify and quantify cybersecurity alerts through data-driven and risk-based classification.
Provide detailed insight into your network activity, enabling proactive incident response.
Aligned to an ISO270350-certified incident response plan with industry approved incident handling processes* and tailored to your environment. This also serves as an SLA between the client and the threat hunters.
Our Incident Response Performance Metrics
MTTD
Mean-time-to-detect
Agreed time for threat hunters to detect anomalies and security incidents within the monitored environments.
MTTR
Mean-time-to-respond
Agreed time for the client’s first responders (1FR) to events. This will trigger internal escalation workflows if lapsed.
MTTC
Mean-time-to-contain
Agreed time for the client’s 1FR and Snode analysts to contain a cybersecurity incident.
ISM
Incident severity matrix
Incident classification based on the impact, urgency and likelihood of occurrence. This matrix is aligned to the client’s internal risk appetite.
Cybersecurity Incidents
Response Team
Snode’s senior cyber defence specialists can serve as part of the CSIRT (Cybersecurity Incident Response Team) to align war-room activities and effectively treat cybersecurity incidents.