MANAGED SECURITY SERVICES (MSS)
RedSOC & BlueSOC Services
24/7
24/7
Offensive and defensive security that strengthens your security posture
Sentor’s managed SOC services are divided into two types; BlueSOC services and RedSOC services. BlueSOC services are defensive by nature and aim to maintain internal defense, by detecting and responding to cyber threats. Sentor’s RedSOC services are offensive and aim to continuously identify and address deficiencies in the customer’s security posture, both technical vulnerabilities and more structural weaknesses.
BLUESOC
Detect and respond to cyber threats
Sentor’s BlueSOC combines market-leading technology, threat intelligence and cutting-edge expertise to detect and respond to cyber threats in near real-time. Sentor’s BlueTeam operates 24/7 in Sentor’s BlueSOC and has cutting-edge expertise in security analysis, threat hunting, and incident response.
Sentor’s BlueSOC acts as an extension of the customer’s internal security team with the objective of protecting the customer’s business and reducing the response time in the event of an incident. When a threat is detected, it gets verified and managed on the basis of a common incident response plan.
BlueSOC Services:
REDSOC
Recon & Attack
Security testing from an attacker perspective
Sentor’s RedSOC is manned by our RedTeam that are true experts in penetration testing and social engineering. Using market-leading tools, they work continuously to identify vulnerabilities in the customer’s IT environment. The findings are then used to escalate the attack through manual penetration tests – using the same approach as a real-life attacker.
Attack attempts are continuous and any findings are reported on an ongoing basis. This means that the organisation’s resilience is tested, validated and hardened over time, instead of the snapshot of a single penetration test or a single scanning activity.
RedSOC Services:
Benefits of combining RedSOC and BlueSOC Services
Combining Red and BlueSOC creates several benefits from a security perspective. In addition to the ability to continuously test the organisation’s resilience, the RedTeam also contributes to Sentor BlueSOC’s ability to constantly improve. By testing different attack surfaces, RedTeam can provide BlueTeam with information about possible defects and gaps in the detection. With the help of such information can, for example, new use-cases be created to strengthen the BlueTeam’s detection capabilities, enabling better and more tailor-made protection for the customer.
Want to get in touch?