SOCSoter Enhances MDR Platform Through Integrations With Major Security Tools

Formerly focused on working as an MSSP itself, SOCSoter has expanded to offer its managed detection response platform to other MSPs and has been busy bolstering the platform through integrations with popular tools from major cybersecurity vendors.

The company has about 400 MSPs as partners currently, with an expanded focus on working with MSPs over the past year as the company has upgraded its MDR platform, said Eric Pinto, senior director for channel at the Hagerstown, Md.-based company.

[Related: The 2020 Security 100]

"We've spent the past year revamping [the platform]. We've re-productized everything, and we've spent a lot of time on the UI/UX--the experience that the MSP our partner would have as they're going into our dashboard," Pinto told CRN.

The MDR offering provides a managed SOC/SIEM platform with capabilities to detect malicious activity, monitor networks, manage endpoint agents and provide reports and dashboards.

SOCSoter's platform also offers advanced threat intelligence, pattern analysis and threat discovery. Additionally, the company offers solutions for compliance and endpoint detection response.

Eric Wakkuri, president at Escanaba, Mich.-based DS Tech, said he's been glad to partner with SOCSoter because the company does a great job of monitoring and categorizing the massive number of security events that a customer has each month. SOCSoter puts different threat level indicators on the events and then sends out an email with the key information that goes directly into a ticket system.

"You can go from having millions of logs down to five actionable tickets," Wakkuri said. "When I talk to someone about why we partner with them, that is the strength."

A key focus over the past six months at SOCSoter has been on integrations for the company's platform with third-party security tools.

Among the vendors now integrated with SOCSoter include Sophos, SonicWall, WatchGuard, Fortinet, Cisco Umbrella and CrowdStrike.

MSPs are "using these services--they're using Sophos, SonicWall these other tools--in their everyday. These tools produce a myriad of alerts. A lot of the times those alerts go unnoticed or unchecked. Sometimes they're turned down because of the volume," Pinto said. "If we're able to integrate that into our platform and monitor those services for them, they can be faster to respond than they would be otherwise."