Get advice — it's free

More from software advice

Home
Endpoint Security Software
MDR Services

MDR Services

Compare All MDR Services

Filters

Apply Filters:

X

Your Industry

  • + Show all

Your Company Size

  • + Show all

Price

Sort by

Recommendations: Sorts listings by the number of recommendations our advisors have made over the past 30 days. Our advisors assess buyers’ needs for free and only recommend products that meet buyers’ needs. Vendors pay Software Advice for these referrals.
Reviews: Sorts listings by the number of user reviews we have published, greatest to least.
Sponsored: Sorts listings by software vendors running active bidding campaigns, from the highest to lowest bid. Vendors who have paid for placement have a ‘Visit Website’ button, whereas unpaid vendors have a ‘Learn More’ button.
Avg Rating: Sorts listings by overall star rating based on user reviews, highest to lowest.
A to Z: Sorts listings by product name from A to Z.
ResetShow 32 Results
Showing 1 - 20 of 32 products
Filters
Showing 1 - 20 of 32 products

Kaspersky Endpoint Security

Kaspersky Endpoint Security for Business Core offers multi-layer anti-malware protection for corporate networks regardless of device or location. With an extensive network, analysts are able to defend against threats in real time....Read more

4.45 (941 reviews)

Learn More

ESET Endpoint Security

ESET Endpoint Security software is a cloud-based and on-premises application for internet security and malware protection. It has a global user base that comprises businesses of every size. Cloud sandbox technology enables users t...Read more

4.67 (822 reviews)

Learn More

NordVPN

NordVPN is a computer security software designed to help businesses encrypt internet connectivity to securely access personal information using a virtual private network. It offers a kill switch module, which allows administrators...Read more

4.64 (941 reviews)

Learn More

Cynet 360

Cynet is a tech-enabled service and software provider that provides protection for internal networks with a fully integrated solution for endpoint security, vulnerability management, deception, threat intelligence, network analyti...Read more

5.00 (1 reviews)

Learn More

Netwrix Auditor

Netwrix Auditor is a security solution that helps organizations overcome compliance and operational challenges. Netwrix solutions empower you with total control over what's going on in your hybrid IT environment by delivering acti...Read more

4.50 (140 reviews)

Learn More

FireEye Enterprise Security

FireEye Endpoint Security is a cloud-based solution that regularly monitors endpoints for malware and other online threats. The platform enables users to analyze intrusion activities and create real-time responses to address them....Read more

No reviews yet

Learn More

Dark Web ID

Designed for MSP and internal teams, Dark Web ID is a cloud-based threat monitoring solution that protects organizations from cybersecurity breaches on the dark web. Dark Web ID monitors the dark web for threat intelligence about ...Read more

3.89 (9 reviews)

Learn More

Blackpoint MDR

Blackpoint Cyber is a technology-focused cybersecurity company headquartered in Maryland, USA. The company was established by former US Department of Defense and Intelligence security experts and leverages its real-world cyber exp...Read more

4.79 (33 reviews)

Learn More

Infocyte

Infocyte is a cloud-based endpoint security solution that helps businesses monitor, analyze and respond to cyber threats. It allows users to enumerate/catalog assets, applications or hosts available on a network and identify unaut...Read more

4.85 (13 reviews)

Learn More

Rapid7 MDR

Rapid7 MDR is a technology-enabled managed detection and response solution that helps organizations of all sizes mitigate risks and ensure network security. The solution enables users to identify threats through behavioral analysi...Read more

No reviews yet

Learn More

Software pricing tips

Read our MDR Services Buyers Guide

Subscription models

  • Per employee/per month: This model allows you to pay a monthly fee for each of your employees.
  • Per user/per month: Users pay a monthly fee for users—normally administrative users—rather than all employees.

Perpetual license

  • This involves paying an upfront sum for the license to own the software and use it indefinitely.
  • This is the more traditional model and is most common with on-premise applications and with larger businesses.

Rated best value for money

Arctic Wolf Managed Detection and Response

Arctic Wolf Managed Detection and Response is a SOC-as-a-service solution that helps businesses monitor, detect and respond to cyber threats. It allows users to automatically collect, retain, analyze and search log data from exist...Read more

No reviews yet

Learn More

Paladion

Paladion is a managed detection and response service provider that enables businesses to detect cybersecurity threats using artificial intelligence (AI) and machine learning techniques. Paladion's analysts can to identify or detec...Read more

No reviews yet

Learn More

Secureworks

Secure Works is tech-enabled managed detection and response service provider that utilizes their in-house solution, Red Cloak Threat Detection and Response (TDR), to help businesses detect adversaries across endpoints, networks an...Read more

5.00 (2 reviews)

Learn More

eSentire

eSentire is a technology-enabled service provider that uses managed detection and response(MDR) services to help businesses automate processes related to threat identification, log data retention, false-positive elimination and mo...Read more

No reviews yet

Learn More

Critical Insight

Critical Insight MDR provides managed detection and response (MDR) services to businesses, allowing them to identify and mitigate potential cyber threats. By integrating machines with human intelligence, the application automatic...Read more

5.00 (1 reviews)

Learn More

InsightIDR

insightIDR is a cloud-based security information and event management (SIEM) solution that enables businesses to streamline processes related to endpoint detection, behavior analytics, incident response and more. Professionals can...Read more

0.00 (2 reviews)

Learn More

Jazz Platform

Jazz Platform is a cloud-based and on-premise network security solution designed to assist small to large businesses with threat detection and response automation. Key features include data protection, image capture, forensic anal...Read more

5.00 (5 reviews)

Learn More

Great Bay Network Intelligence Platform

The Great Bay Network Intelligence Platform is a cloud-based solution that helps businesses streamline processes related to endpoint security, asset inventory/onboarding, threat detections and more. It enables IT, security and ope...Read more

No reviews yet

Learn More

Perimeter 81

Perimeter 81 is the first Cybersecurity Experience Platform to streamline SASE through its groundbreaking ease-of-use and unified network security stack. With a global network of PoPs, Perimeter 81 offers secure network capabiliti...Read more

4.50 (8 reviews)

Learn More

Forcepoint Web Security

Forcepoint Web Security is a network protection solution that provides businesses in healthcare, retail, finance and other sectors with protection against web threats including viruses, malware, data loss and phishing attacks. The...Read more

4.29 (7 reviews)

Learn More

Popular MDR Services Comparisons

VS
VS
VS
VS
VS
VS

Buyers Guide

Last Updated: October 19, 2021

Companies today can process data and derive business insights faster by leveraging advanced technologies such as 5G, IoT, data analytics, machine learning, and cloud. However, as technology grows, so does the threat of cybercrime.

Fortunately, there are now better security technologies, such as endpoint security software, and services to help organizations prevent cyber attacks. Managed detection and response (MDR) is such a service, which moves away from the traditional, reactive model and takes on a more proactive approach at mitigating cyber threats.

MDR service providers employ teams of security engineers and analysts that use the latest technologies to constantly monitor and proactively search for threats to a business’s networks and host devices.

This buyers guide explains in detail what MDR services exactly are, their common offerings, and key considerations.

Let’s get started!

Here’s what we’ll cover:

What is managed detection and response (MDR)?

MDR is a security service delivery model that combines threat detection with proactive investigations to preempt cyber attacks. MDR service providers continuously monitor an organization’s networks and host devices to detect suspicious patterns in user behavior and application threats, in real-time.

MDR service providers have security engineers and analysts who respond to potential threats and analyze the vulnerabilities in organizational systems to preempt future cyberattacks.

Common offerings of MDR services

MDR service providers help businesses detect and respond to threats faster. Let’s look at these more closely.

Monitoring and detection A team of security experts uses proprietary security technology stacks, consisting of SIEM and EDR solutions, to detect threats across a client’s network and endpoint devices.
Incident response The provider takes reactive actions, such as blocking an IP address from accessing the network or killing a process on an endpoint server or device, to contain security incidents.
Threat hunting The provider collects security data, such as logs from network firewall and intrusion detection systems, and performs deep analysis to proactively identify threats.
Client portal Clients can access reports confirming threats and read security recommendations via a self-service portal. The portal may also include a ticketing workflow for raising service requests.

What type of client are you?

The type of MDR service provider your organization needs depends on the maturity of your security operations.

  • Low IT security maturity: These clients don't have an in-house team of IT security experts nor have they made significant investments in security solutions. They can set up threat detection and response capabilities by outsourcing to an MDR services provider, especially one that also offers security products.
  • Moderate IT security maturity: These clients have made sporadic investments in threat detection technologies and may also have a small team managing an in-house SOC. Their MDR requirements emphasize scaling existing IT security capabilities. They should ensure their existing security technologies integrate seamlessly with the MDR services provider's technology stack.
  • Substantial IT security maturity: These clients have a fully-functional in-house SOC with significant investments in security technologies and may even be using an MSSP. Their MDR requirements are focused on bridging the gaps in their current capabilities. They might want to look for specialist MDR services providers that cater to specific business use cases.

Key considerations

Examine your business needs: Conduct a meeting of key stakeholders to understand what parts of your IT environment (on-premises assets, SaaS tools, certain workflows) need monitoring and what are the most critical threats your organization faces. Defining and documenting the reasons on why you need MDR services will help craft relevant questions while exploring options on the market.

Understand service level agreements (SLAs): SLAs perform two functions. The first is to confirm the legal formalities, such as determining that the ownership of security data remains with you and not the vendor. Second, SLAs ensure that you hold the vendor liable for quality, such as providing timely support services. Ensuring that you have well-defined SLAs ensures that you have set the right expectations from the MDR service provider.

Home
Endpoint Security Software
MDR Services