2023 - 2024

For MXDR customers

MXDR (Managed Extended Detection and Response) providers offer a range of services and tools to help organizations enhance their cybersecurity posture. These services typically include continuous monitoring, threat detection, incident response, and threat hunting. To efficiently provide these services to their customers, standardization of services is used - which sometimes creates the situation that customer requirements, although technically feasible, are not met.

AlpenShield seeks to bridge the gap between standardized MXDR offerings and the unique security requirements of each customer by implementing missing functionalities for MXDR customers in Sentinel.

ALPENSHIELD CAN ADD THE FOLLOWING TO YOUR SENTINEL ENVIRONMENT:

Analytic Rules

Automation

Watchlists

Workbooks

Reports

Hunting-Rules

THIS CAN BE IMPLEMENTED FOR:

Existing log sources

or new third party log sources (i.e. non-Microsoft)

TYPICAL USE-CASES FOR AUTOMATION ARE:

zScaler Internet Access:
Add a URL to a Category (typically to block it)

Palo Alto PAN OS:
Block (or unblock) an IP via an Address Group.

Cisco Meraki:
Block a potentially malicious client by a client policy

Questions? Let's talk!

Do you have questions or want to learn more? Instead of long e-mail chains, what about hopping on a quick Teams Meeting to discuss? No strings attached we will present you our live demo.