Cyber risk and advisory programs that identify security gaps and build strategies to address them.
MDR that provides improved detection, 24/7 threat hunting, end-to-end coverage and most of all, complete Response.
Our team delivers the fastest response time in the industry. Threat suppression within just 4 hours of being engaged.
Be protected by the best from Day 1.
24/7 Threat Investigation and Response.
Expert hunting, research and content.
Defend brute force attacks, active intrusions and unauthorized scans.
Safeguard endpoints 24/7 by isolating and remediating threats to prevent lateral spread.
Investigation and enhanced threat detection across multi-cloud or hybrid environments.
Configuration escalations, policy and posture management.
Detects malicious insider behavior leveraging Machine Learning models.
Customer testimonials and case studies.
Stories on cyberattacks, customers, employees, and more.
Cyber incident, analyst, and thought leadership reports.
Demonstrations, seminars and presentations on cybersecurity topics.
Information and solution briefs for our services.
MITRE ATT&CK Framework, Cybersecurity Assessment, SOC Calculator & more
How a Leading Private Equity Firm Uses Managed Detection and Response (MDR) to Standardize Risk Management Across 35+ Portfolio Companies
eSentire MDR provides 24/7 threat detection and response for 35+ THL portfolio companies to improve their cyber controls, governance, and mitigate the risk of impacting deal valuation.
Thomas H. Lee Partners (THL) is a Private Equity firm based in Boston, Massachusetts. The firm actively invests in 35+ mid-market growth companies spanning the Business and Financial Services, Consumer and Retail, Healthcare, and Media, Information Services and Technology industries.
With almost 50 years as investors and operators, THL has raised $35 billion of equity capital, worked with more than 170 partner companies around the world, and fueled more than 600 add-on acquisitions that represent an aggregate enterprise value of over $250 billion.
Cybersecurity breaches and threats are pervasive concerns for any entity storing valuable data or managing large sums of money: private investment funds are no exception. CIOs have begun to put stronger cybersecurity practices in place to defend against attackers and private equity firms are better defended than ever. But attackers know that the portfolio companies are smaller, growth companies with lean cyber security operations that are less mature.
As a PE firm, THL knows they are a high-value target for threat actors, especially when they announce new investment deals or exit opportunities. This is complicated further since threat actors actively research and target investments, knowing they have cyber insurance.
In THL’s case, they needed to ensure that each portfolio company is protected from cyberattacks, but the protection couldn’t come at the expense of other objectives like scaling the companies. As Mark Benaquista, a Managing Director who has been with THL since 2011, described the situation, “We want our management teams to focus on things that are going to move the needle and help the company grow.”
THL also wanted complete visibility into the cybersecurity posture of each portfolio company in a standardized and easy-to-consume way. “I’m one person, and I have another gentleman on my team, so there’s two of us and we have to look after these 35 companies,” said Mark.
As a result, THL also wanted a holistic view of the threat landscape impacting their portfolio companies, phishing and security awareness training for their employees, and the ability to identify cyber risks to protect their assets and help them mature.
Given the lack of in-house security expertise, limited access to best-in-class security tools, and ongoing guidance on managing cyber risks, they were looking to outsource 24/7 threat detection and response capabilities to a MDR provider.
THL was looking for an MDR provider who could become a trusted advisor and partner for not only the fifirm, but all their portfolio companies as well: “When we were looking at partners, we wanted someone that could be a partner to all of our portfolio companies, not to be wed to any particular technology, and who would use best-in-class tools to help make us aware of the risks that exist, how they’re being managed, and where we need to potentially improve,” Mark said.
As part of the selection process, THL took a collaborative approach with the CISOs from their portfolio companies to align on the goals and the approach to take prior to partnering with a security provider. The firm eventually chose eSentire to be their trusted security partner to provide:
Throughout the partnership, eSentire has played a key role in how THL’s portfolio companies are protected against the most devastating cyberattacks. As part of its standard playbook, THL has four main priorities upon acquiring a new asset:
By choosing a partner like eSentire, THL can eliminate certain risks that many portfolio companies may be predisposed to such as high rates of people turnover and travel knowledge moves. This allows THL and their portfolio companies to scale without having to slow down and manage their cyber risks effectively.
Another challenge for THL is maintaining visibility across all their portfolio companies and the status of their security programs. To track performance across THL’s portfolio companies, eSentire developed a rolling monthly chart that shows who’s live, the components they’re live with, where they are in the journey, and if there are any challenges along the way.
“eSentire team has become the arms, legs, and experts that help us understand where we are in the full deployment of MDR and coverage of the attack vectors once the service is deployed. eSentire sees across our whole portfolio and collapses that view so the firm gets a single dashboard view,” Mark says.
More importantly, Mark also recommends that portfolio companies leverage the benefifits they get as part of Security Network Effffects when they partner with a provider like eSentire. “One of the things that we love is that — whether it’s a zero day that eSentire discovered or it’s something else that’s happening fast — when it’s brought to eSentire’s attention, the entire portfolio gets the benefifit of that within seconds or minutes.”
Mark characterizes the addition of eSentire as making a night and day difffference to how THL manages risk. “My partners ask me all the time, ‘How can you be so comfortable?’ and I say the only way we can sleep at night is to have a partner like eSentire at our side.”
Connect with an eSentire Security Specialist to learn how we can help you build a more resilient security operation and prevent disruption.