Managed Endpoint Security (SOC-As-A-Service)
SOC as-a-service provides scalable security operations designed to help you maintain continuous Cyber Awareness and Control of your network. Some SOC uses are Malware Detection, Intrusion Detection, Policy Violation Detection and more.
Our 24/7 Security Operations Center (SOC) Managed Endpoint service, powered by Fortinet, is delivered through a single agent, that provides real-time actionable visibility to stop threats across various vectors, while active Endpoint Detection and Response (EDR) applies Machine Learning (ML)-based behavioral metrics to all events to help track the root cause.
RavenSword Security’s SOC service has ransomware protection, can roll back changes made by malicious programs, and can put the endpoint back to a pre-infection state.
Overview
RavenSword Security’s Managed Endpoint Security Service uses the power of our global Security Operation Centers by leveraging the best technology for detecting known signature-based and unknown behavioral-based threats. Managed Endpoint Security remediates Windows, reverses any alteration, deletion, or encryption to sensitive documents or data volumes because of a successful breach or a Ransomware attack.
One light agent supports a wide range of operating systems including: Windows, Mac, Linux, and legacy systems such as Windows 2003. RavenSword Security establishes complete visibility across your entire environment to provide 24/7 continuous threat monitoring and detection of threats.
Advanced Machine Learning
Performing threat hunting at scale requires machine analytics to ingest millions of EDR sensor data to identify new behavior, patterns of anomalous activity, and an increase in suspicious use baselines. Your agents will be part of millions of FortiClient and FortiSandbox users worldwide who share information about known and unknown malware. RavenSword Security uses all this data to perform machine learning and anomaly detection on EDR sensor activity.
Orchestrated Incident Response
RavenSword Security EDR enables our SOC team to respond and remediate rapidly, containing threats and repairing damage quickly. It executes Automated Endpoint Isolation of infected systems and removes malicious files to prevent lateral movement. RavenSword Security EDR automatically collects, and stores detailed forensic data for post-incident investigation.
Minimal Deployment
One agent delivers EDR, VPN, and vulnerability management among other capabilities. RavenSword Security’s Fully managed service reduces the cost of Incident Response (IR) and provides more effective remediation without the need to deploy any servers.
Recover from Ransomware Attack
A Windows roll-back capability that enables our team to restore any altered files because of a successful Ransomware event.