SOC Video
Learn how our Security Operations Centre defends our global client base.
Learn how our Security Operations Centre defends our global client base.
Protecting Your Business.
On Your Terms.
We’ve heard it a million times, the threat landscape is ever-evolving. It’s increasingly difficult to protect your organisation, especially with the changes to working habits the pandemic forced upon us. And, cyber criminals have more avenues for attack than ever before.
What you need is a security partner. Someone that takes time to understand your business and strategic priorities. Partnering with our customers is so much more than monthly service reviews to show performance against SLA’s, it is recognition of changing business requirements and adapting to those needs to help the customer navigate the competitive landscape they operate in.
Read More
Talion’s Managed Detection and Response service delivers all this and more. Our business started when the UK Government requested we protect a major global sporting event in 2012, back then we were part of BAE Systems, the UK’s largest defence contractor. Today, we have the same defence grade platform, engineered to exacting standards but, we’re smaller, more innovative and agile, and easier to do business with.
Read Less
What makes our
MDR service unique?
At the heart of our MDR service is our threat-led process that focuses on understanding the customer’s business, what’s important to them and the threats they face. We create, hone and maintain threat use cases to ensure we defend against what matters to our customers. This methodology is equally applied to cloud, hybrid and on-premise networks and the threats they face. We build rule and playbook content to detect these threat use cases, and in the case of playbooks, enrich and orchestrate a response, whether that be actionable recommendations, manual actions or automated remediations.
Read More
We pride ourselves on staying threat-relevant. The MDR service is underpinned by our expert Threat Intelligence team. We work with multiple customers managing workloads across multiple cloud vendors and we operate a ‘Benefit One, Benefit All’ system. You will benefit from the lessons learnt across all our customers, as well as the detection content and playbooks that we have built to deal with a wide array of threat use cases.
Read Less
Managed Detection & Response (MDR) Diagram
We don’t do black-box solutions. You have full visibility across absolutely everything that goes on in our SOC, 24 hours a day, 7 days a week.
We’re your cyber security partner, which means we operate in a way that works for you, whether that’s working through responses together, or simply briefing you on the threats that really need your attention.
We grow with your business, adapting to your changing needs, responding to the evolving threat, and putting control firmly back in your hands.
Talion’s TCM tool provides our clients with a view of how well their security monitoring aligns to the MITRE ATT&CK framework. TCM provides a coverage map for hundreds of threat actors or malware, including hundreds of techniques and sub-techniques—from types of scripts/shells to services exploited and evasion methods. Threat coverage is not a black and white exercise so we tell you to what degree you are covered, usually as a percentage, the TCM tool is then used on an ongoing basis to assess and improve your threat coverage.
TCM’s MITRE ATT&CK focus allows security teams to make informed decisions which are objective and independent of a security vendor’s view.
TCM provides security teams with a touchstone for establishing and defining an effective protection and monitoring strategy. By mapping the MITRE ATT&CK framework, attacks and sources customers can identify the most common techniques and use these as a basis to define protective moniitoring improvements or to validate the moniroting they have in place at any point in time. TCM focusses on the latest tactics, techniques and procedures used by attackers meaning that Talion’s customers can
Threat Hunting is the practice of proactively searching for threats on a network by detecting anomalies in normal user and network behaviour. This approach to cyber security is driven by the premise that it is impossible to prevent every single intrusion on a client’s estate. This approach drives the two main objectives for Threat Hunting:
1. Identify previously unknown or ongoing threats
2. Gain a deeper understanding of the client’s technical landscape to provide additional security value
Using our Azure based data lake capabilities and our analysts skilled knowledge of how threat actors work we can perform automated and manual threat hunts across entire data sets. Threat Hunting is designed to complement our existing monitoring services.
Talion’s Enhanced User Monitoring (EUM) service is a flexible service that monitors threats from employees and end users who may pose a particular risk to the business. The EUM service provides custom detection content from Talion to detect atypical user behaviour of User Entities of Interest. Where possible the Custom Detection Content is mapped and referenced to the MITRE ATT&CK Framework.
The EUM service is designed to provide enhanced user monitoring for two types of user:
Talion’s model is based on people and partnership and not just technology… We spoke with others who aspired to this, but it simply wasn’t what they did; they had a much greater focus on dashboards and alerts. In contrast, the people at Talion told us: ‘We’re here when you need us – just pick up the phone. We can meet weekly, monthly – whatever works for you. We’re here to help.’ It was hugely important for us.
Senior Director – Security Operations
One of Britain’s Largest Technology Companies
At every level, [the team] gave us quantitative, analytical advice, in the moment, … [You] enabled us to take the business judgements that cyber security requires you to take.
CEO
FTSE 250 Company
Talion have been a fantastic partner to work with and I really see them as an extension of our team. Having the skillset and agility of a growing organisation but the talent and capability of a much larger organisation from which they were formed, BAE Systems, has proven a great combination. The team work hard to continuously demonstrate and add value to their customers and are always receptive to feedback.
Director of Information Security and Risk
One of North America’s largest providers of funeral and cemetery services
This is a sort of cyber security arms race. Criminals are learning to do new things. One of the first calls I made on Wednesday was to Talion.
CEO
Large UK Telecommunications Company
Call us directly and we’ll put you in touch with the most relevant cyber expert.
Give us a brief description of what you’re looking for and we’ll put you in touch with the best person.
