Managed Detection and Response (MDR) Service

Cyber Solutions Products

The unique combination of SentinelOne®'s AI-driven threat detections, working in conjunction with First Watch's proprietary detections, elevates your data security and significantly reduces false positives. This combination, along with First Watch's Human Element, differentiates us from the competition.

First Watch Human Element: allows First Watch to provide proactive threat hunting, 24/7 threat detection, squad model, and threat remediation which reduces our customers' security workload and human resource security costs. All of this at the lowest retail price.

What's Included?

Managed NGAV MDR MDR Pro MxDR
24x7 Threat Monitoring Detections & Response

  • Every console threat is,reviewed, acted upon, and documented
  • Full response capabilities
  • Automated threat response including remediation
  • Next Generation Anti-Virus (EPP) and EDR Sentinel One agent

check check check check
Managed Threat Detection and Response

  • Customized configuration and setup EPP unique to the environment
  • Review all detections to determine if false positive or an actual threat
  • Manage EPP to include remediation, malware analysis of threats and adding exclusions.

check check check check
24x7 Threat Monitoring Detections & Response

  • Every console threat is,reviewed, acted upon, and documented
  • Full response capabilities
  • Automated threat response including remediation

check check check check
Unlimited Incident Response

  • Ransomware rollback
  • Leverage AI to detect and respond to active threats
  • Detect threats across the entire attack surface
  • Full Investigation: RCA infection vector, exfil/breach determination, intelligence-informed enrichment, and contextualization, memory analysis

  check check check
Active Threat Hunting

  • Active hunting & tracking of attacker techniques, global APT campaigns, and emerging cyber crimes
  • Alerting and remediation when threats are detected in your environment

  check check check
Proprietary Behavior Based Detections

  • Behavior based detections based on MITRE ATT&CK framework (Techniques, Tatics & Procedures) TTP's
  • Tuning of customers enironment

  check check check
Slack Channel

  • Collaboration between customer and First Watch cyber analysts
  • on active threats
  • Communication channel for customer and First Watch MDR team
  • Assigned customer advisor

    check check
Squad Model

  • Dedicated team of experienced cyber analysts
  • Dedicated project manager
  • Quarterly threat landscape reviews

    check check
Managed Extended Detection & Response (MxDR).

  • Cloud based SIEM (Devo),
  • Correlation of endpoint and network traffic,
  • Log source ingestion: Email, Firewall and Proxy Logs.

      check

Our Expertise

GAIC Certified Incident Handler (GCIH) Department of Defense Digital Media Collector COMPTIA A+ COMPTIA Network+ GIAC Assessing and Auditing Wireless Networks (GAWN)
CISM Certified Information Security Manager Department of Defense Digital Forensics Examiner NIST Compliance CMMC Compliance GIAC Web Application Penetration Tester (GWAPT)
CISA Certified Information Systems Auditor SSCP Systems Security Certified Practitioner The Reid Technique of Interviewing and Interrogation GIAC Certified Penetration Tester (GPEN)
CISSP Certified Information Systems Security Professional COMPTIA Security+ GIAC Certified Forensics Examiner (GCFE) GAIC Certified Intrusion Analyst (GCIA)
EnCE EnCase Certified Examiner AccessData Certified Examiner GIAC Network Forensic Analyst (GNFA) GAIC Reverse Engineering Malware (GREM)