Detect & Respond
Safe XDR
Safe XDR is a unique Cyber Threat Exposure Management (CTEM)-enabling service that not only defends the IT environments that you know you need to defend, it identifies the gaps in your defence and helps you defend them, as well.
Safe XDR integrates internal and external ASM with XDR and automation.
Safe XDR enables you to:
​
-
proactively manage both risks and threats
-
close the gaps in your defence
-
validate that your security controls are working
-
get the most out of your security investment.
Microsoft Sentinel
Microsoft Sentinel is a fully cloud-native Security Incident and Event Management (SIEM) product that ingests security logs and detects threats using Microsoft’s analytics and threat intelligence. Security analysts can investigate threats with artificial intelligence and hunt for suspicious activities.
If your organization doesn’t have its own security operations center (SOC) or if you want to offload some monitoring tasks, we will monitor it on your behalf
Microsoft Defender
Microsoft Defender is a suite of security solutions for endpoint protection, identity security, email security, and cloud app security.
If your organization doesn’t have its own security operations center (SOC) or if you want to offload some monitoring tasks, we will monitor it on your behalf.
SOC Services
Effective security operations require a skilled team, robust and scalable methods, and a purpose-built technology platform - in that order - yet these take several years to build and optimise.
The Performanta has delivered SOC services for over 15 years. We bind together four pillars that are essential to delivering an effective security operations for our customers, which is constantly learning and improving:
-
Threat Intelligence, enabling proactive threat hunting
-
Engineering: integrating new security data sources as the customer organisations evolve
-
Development and automation of detection and response actions
-
Continuous incident response: integrating real-time monitoring and automated responses to threats as they occur.
Third Party Risk Monitoring
Supply chain cyber security monitoring helps protect against cyber threats that can compromise and disrupt operations, and damage reputations, but limited visibility into third-party systems and the evolving nature of cyber threats complicate the monitoring process.
Performanta’s supply chain risk monitoring service enables customers to minimise supply chain risk through a combination of the following services:
-
Risk Assessment to identify and evaluate potential risks within the supply chain.
-
Vendor Management: establishing security requirements, conducting regular audits of third-party suppliers.
-
Cyber Threat Data Integration: aggregating ASM and digital footprint data from various sources to assess exposure risk
-
Real-Time Monitoring of digital interactions with the supply chain.
-
Incident Response: creating and maintaining robust incident response plans
-
Training and Awareness: educating employees and partners about cyber security best practices.
Performanta’s service safeguards your company’s reputation and makes the supply chain more resilient.
Security Assurance
The cost of internet crime is increasing continuously. Business Email Compromise (BEC) alone accounted for an estimated $2.4 billion in 2021. For most organisations the largest attack surface is no longer their public IP address or website, but their publicly hosted SaaS solutions.
Whilst Microsoft and other vendors take responsibility and ownership for most of the layers within of security within their platforms, companies are still responsible for ensuring their configuration is secure. Due to the evolution of SaaS offerings, it is critical that organisations not only review and check that their environment is optimally configured but also that it is continuously reviewed to mitigate latest threats and take advantage of latest technologies.
Performanta’s Security Assurance service addresses this gap by understanding organisations’ threats, needs and risk appetites and then working with them to iteratively improve their security posture and configuration, through a blend of reviews, assessment and targeted support.
​
The Security Assurance service is built on the ISO model of iterative improvement. Performanta will take an initial baseline of the current security posture at the start of the year. Performanta will then:
-
Provide an annual roadmap of improvements based on business need, risk and complexity
-
Perform additional reviews for the year, based on the above report and current security posture
-
Support roadmap defined improvements Carry out regular reviews of key reports
-
Deliver appropriate vendor-funded workshops to supplement the service.
Incident Response
We bring structure, order and calm to the chaos that organisations experience during incident response.
Organisations with inadequate security are thrown into flux during an incident. This can be avoided. Our offensive cyber security capability pulls order from the chaos. We deliver this through our Strategic Response Unit. We go where hackers go and we learn what they learn.
​
Our focus is on containing the incident and limiting the impact to your organisation. We’ll determine the cause of the breach. We’ll work with your security, privacy, governance and IT teams, as well any required third-party teams such as law firms, PR firms, forensic analysts, and any other managed service providers. Ultimately, we’ll kick out the intruders and ensure they remain out.
​
In these efforts, collaboration is key. We can support your team. But if you prefer a deeper engagement from us, we can lead and manage your full incident response.
Some service providers ringfence their own technology. We’re different. Yes, we can deploy our own tech stack but it’s not a condition of doing business with us. We will use all of your available tech to investigate, contain and eradicate intruders. Via our managed security services offer, we can also call on a pool of experts and technical specialists.