Core Capabilities
| Foundation | Plus | Advanced | Complete | |
|---|---|---|---|---|
| 24x7x365 MDR (Artemis Pro, Sentinel*, Rapid7**) | ✓ | ✓ | ✓ | ✓ |
| Native AI Integration including all TTPs and IOCs | ✓ | ✓ | ✓ | ✓ |
| Cyber Threat Intelligence & Detection Engineering | ✓ | ✓ | ✓ | ✓ |
| 24-hour Response to threats (ex SOAR) | ✓ | ✓ | ✓ | ✓ |
| Proactive Threat Detection & Threat Hunting | ✓ | ✓ | ✓ | ✓ |
| Secure Mail Gateway Management*** | ✓ | ✓ | ✓ | ✓ |
| Microsoft 365 (M365) Essentials Review | Annually | Annually | Semi-Annually | Quarterly |
| Baseline Dark Web Monitoring (10 indicators) | ✓ | ✓ | ✓ | ✓ |
| Advanced Dark Web Monitoring (50 indicators) | – | – | ✓ | ✓ |
* Excludes Sentinel data costs ** Excludes Rapid7 IDR license cost *** Requires mail gateway, Mimecast, Defender P2 for Mail, ProofPoint, MailGuard or Abnormal
Readiness & Vulnerability
| Foundation | Plus | Advanced | Complete | |
|---|---|---|---|---|
| Internal Vulnerability Scanning Configuration (ex tooling) | – | Quarterly | Monthly | On Demand |
| Web Application Vulnerability Scanning | – | – | Weekly / On-demand | Weekly / On-demand |
| External Vulnerability Scanning | – | – | Weekly / On-demand | Weekly / On-demand |
| Custom Vulnerability Management Program | – | – | – | One-off |
Assurance Testing
| Foundation | Plus | Advanced | Complete | |
|---|---|---|---|---|
| Automated Breach & Attack Simulation (Purple Teaming) | – | Semi-Annual | Quarterly | Monthly |
| Manual Breach & Attack Simulation (Purple Teaming) | – | – | – | Quarterly |
| Annual Penetration Testing Days* | – | 3 | 5 | 7 |
| User MFA Review (VPN and M365) | – | – | Quarterly | Monthly |
| EDR Management** | – | – | ✓ | ✓ |
* Days expire annually and more days can be purchased at a reduced rate of $1,700 / day ** Excludes the cost of EDR platform — can be provided at additional cost
Incident Response
| Foundation | Plus | Advanced | Complete | |
|---|---|---|---|---|
| Incident Response Retainer* | – | 10 Hours | 25 Hours | 50 Hours |
| Incident Response Tabletop Exercise | – | – | Tri-Annually | Annually |
| Basic Incident Response Plan | – | – | ✓ | – |
| Customised Incident Response Plan | – | – | – | ✓ |
| Incident Response Playbooks | – | – | – | 5 |
* Can be used for other services at end of 12-month period
Governance & Reporting
| Foundation | Plus | Advanced | Complete | |
|---|---|---|---|---|
| Cyber Maturity Assessment | – | One-Off | Annually | Annually |
| 36-month Cyber Prioritisation Roadmap | – | ✓ | ✓ | ✓ |
| Cyber Health Check Scorecard | – | Annually | Quarterly | Quarterly |
| Data & Privacy Review (Legal / IT Risk)* | – | – | One-off | One-off |
| Board Reporting | – | – | – | Quarterly |
| Quarterly SOC Reporting | ✓ | ✓ | ✓ | ✓ |
| Quarterly CSM | ✓ | ✓ | ✓ | – |
| Monthly CSM | – | – | – | ✓ |
* Delivered by third party Legal partner