Endpoint MDR – Standard Service

Service Overview

DeepSeas Endpoint Managed Detection and Response Service (Endpoint MDR) delivers 24x7x365 threat detection, analysis, and response to validated cybersecurity threats generated by computer endpoints within a customer's environment. Threat detection includes monitoring of alerts by DeepSeas cyber defense analysts who triage, examine, and categorize alerts generated from a specified endpoint detection and response (EDR) technology. DeepSeas, through its subject matter experts and technological capabilities, also provide threat hunting and detailed forensic investigation in support of the monitoring, detection, and response mission.

Onboarding Process

DeepSeas, together with the Customer, will complete the following process to onboard and initialize the Endpoint MDR service:

1. Kick-Off - DeepSeas and the Customer participate in a joint call to confirm services, service orchestration appliance placement (if required), shipping information, definition of a Customer MDR Runbook and other key details regarding the Services that shall be provided. During the Kick-Off, the Customer is introduced to their Technical Support Engineer (TSE) / Service Delivery Manager (SDM). (Estimated duration <1 week)
2. EDR Technology Deployment - The Customer will deploy the EDR controller and EDR agents to endpoints as applicable and appropriate per the specific software solution and SOW. (Estimated duration 1-3 weeks)
3. Service Orchestration Appliance Deployment - If needed, appliances are shipped within the continental United States with an estimated delivery time of 2-3 days (International shipping schedules will vary). Integration is confirmed when telemetry data flow from the EDR controller to the appliance is established and from the appliance(s) to DeepSeas. (Estimated duration 2-3 weeks)
4. Baseline - DeepSeas will begin monitoring the EDR platform alerts and begin notifying the Customer of validated threats while creating a baseline for priorities, focus, and response. (Estimated duration 1 week)
5. Service Optimization & Go-Live - DeepSeas services are fully operational and adjusted as needed to meet Customer needs, as defined in the Statement of Work. DeepSeas will provide reports and on-going communication to the Customer. (Estimated duration 4+ weeks)

Client shall be required to have one or more of the following Supported Endpoint Technologies deployed within their environment in order to enable the Endpoint MDR service: