Cyber risk and advisory programs that identify security gaps and build strategies to address them.
MDR that provides improved detection, 24/7 threat hunting, end-to-end coverage and most of all, complete Response.
Our team delivers the fastest response time in the industry. Threat suppression within just 4 hours of being engaged.
Visibility and response across your entire Microsoft security ecosystem.
XDR with Machine Learning that eliminates noise, enables real-time detection and response, and automatically blocks threats.
Be protected by the best from Day 1.
24/7 Threat Investigation and Response.
Expert threat hunting, original research, and proactive threat intelligence.
TRU is foundational to our MDR service. No add-ons or additional costs required.
Flexible MDR packages that enhance your cyber resilience and security operations.
Stop ransomware attacks before they disrupt your business.
Detect and respond to zero-day exploits.
Protect against third-party and supply chain risk.
Adopt a risk-based approach to cybersecurity.
Protect your most sensitive data.
Meet cybersecurity regulatory compliance mandates.
Eliminate misconfigurations and policy violations.
Prevent business disruption by outsourcing MDR.
Meet insurability requirements with MDR.
Defend brute force attacks, active intrusions and unauthorized scans.
Safeguard endpoints 24/7 by isolating and mediating threats to prevent lateral spread.
Enhance investigation and threat detection across multi-cloud or hybrid environments.
Remediate critical misconfigurations, security vulnerabilities and policy violations across cloud and containerized environments.
Detect malicious insider and identity-based behavior leveraging machine learning models.
THE THREAT eSentire is aware of widespread exploitation attempts targeting the recently disclosed ownCloud vulnerability CVE-2023-49103. CVE-2023-49103 (CVSS: 10) is tracked as a disclosure of… READ NOW
Our Threat Response Unit (TRU) publishes security advisories, blogs, reports, industry publications and webinars based on its original research and the insights driven through proactive threat hunts.
eSentire is The Authority in Managed Detection and Response Services, protecting the critical data and applications of 2000+ organizations in 80+ countries from known and unknown cyber threats. Founded in 2001, the company's mission is to hunt, investigate and stop cyber threats before they become business disrupting events.
Waterloo, ON and GITEX GLOBAL 2023, Dubai, UAE – October 18, 2023 – eSentire, Inc., the Authority in Managed Detection and Response (MDR), today announced that Inspira Enterprise Inc, (Inspira), a… READ NOW
We provide sophisticated cybersecurity solutions for Managed Security Service Providers (MSSPs), Managed Service Providers (MSPs), and Value-Added Resellers (VARs). Find out why you should partner with eSentire, the Authority in Managed Detection and Response, today.
We believe a multi-signal approach is paramount to protecting your complete attack surface. See why eSentire MDR means multi-signal telemetry and complete response.
See how our 24/7 SOC Cyber Analysts and Elite Threat Hunters stop even the most advanced cyberattacks before they disrupt your business.
Choose the right mix of Managed Detection and Response, Exposure Management, and Incident Response services to strengthen your cyber resilience.
Try our interactive tools including the MITRE ATT&CK Tool, the SOC Pricing Calculator, the Cybersecurity Maturity Assessment, and our MDR ROI Calculator.
Read the latest security advisories, blogs, reports, industry publications and webinars published by eSentire's Threat Response Unit (TRU).
See why 2000+ organizations count on eSentire to build resilience and prevent business disruption.
How a leading organization in the insurance annuity sector is leveraging eSentire’s 24/7 Managed Detection and Response (MDR) to move ahead of the threat curve
The eSentire Managed Detection and Response (MDR) solution included:
Venerable is a leading US-based organization within the insurance annuity sector that focuses on building and growing insurance businesses with long-term capital. Since 2018, Venerable has owned and managed legacy variable annuity businesses acquired from other entities.
Venerable was initially established in 2018, after being divested from Voya Financial. Once Venerable began its operations, they knew they needed to move fast and couldn’t take a risk with an unproven MDR provider given the increasing number of high-profle insurance organizations falling victim to crippling cyber attacks.
As an organization that focuses on the long-term growth of insurance businesses, Venerable’s existing security team is small, albeit with a broad scope – it is responsible for maintaining its security posture in a way that outpaces the business itself so they can drive the most value for their customers.
To ensure Venerable has a leading, world-class cybersecurity program, the security team had three main principles:
As a result, Venerable needed a trusted security partner with deep expertise and a strong reputation within the financial and insurance annuity space that would allow their team to zoom out and take an integrated approach toward building a complete security posture.
Since Venerable was a spin-of from an existing organization, it was able to adopt a 100% cloud-native approach to running all internal applications and build its architecture. Initially, Venerable relied heavily on Amazon Web Services(AWS), but began to adopt Microsoft Azure and Microsoft 365 to decrease their reliance on a single cloud platform. This transition to Microsoft compliments the frm’s disaster recovery eforts, and enables the Venerable team to leverage the technologies and platforms also used by their customers.
Adopting a multi-cloud strategy added a layer of complexity for the Venerable team as it’s harder to monitor and enforce standardized confgurations across multiple platforms. Native security features vary across each cloud platform and achieving a “single pane of glass” operational state across cloud environments is challenging. For example, AWS’s native services for checking cloud compliance confgurations do not work for a non-AWS cloud application like JIRA.
In addition, cloud technologies are constantly evolving, so security teams must not only be able to keep up with that evolution, but also have the resources necessary to secure the technologies. This is especially critical from a confguration management standpoint since cloud environments move faster than most security teams can manage, making it that much more difcult to keep track of any new vulnerabilities that could be exploited.
As a result, Venerable’s small but mighty security team needed a partner that could mitigate cyber risks and address multi-cloud security by:
Simon Scully, Assistant Vice President, IT Security - Security Operations, joined Venerable following his tenure at Voya Financial and had been impressed with eSentire’s capabilities & expertise during his time there. So, when Venerable needed an MDR provider, eSentire was the obvious choice.
To mitigate Venerable’s cyber risks and address their multi-cloud security strategy, eSentire delivered:
The initial engagement began with multi-signal Managed Detection and Response (MDR) for Log and Endpoint to improve visibility into the cloud and get increased MITRE coverage.
Throughout the partnership, eSentire has demonstrated deep knowledge of AWS-specifc threats and vulnerabilities, provided proprietary runbooks and detections to hunt and investigate threats across the AWS environment, and captured endpoint telemetry to prevent adversaries from moving laterally through Venerable’s network by isolating and containing compromised endpoints quickly.
In addition, eSentire facilitated a seamless transition from Venerable’s existing redundant endpoint licensing to Microsoft Defender for Endpoint to consolidate their security spending and to maximize their investment in Microsoft Office 365 E5 licensing. As part of the migration, eSentire provides 24/7 MDR services and leverages Venerable’s own Defender for Endpoint licensing.
From the start, what differentiated eSentire was the market leadership and specialization demonstrated by the team in the Managed Detection and Response space in addition to the cyber expertise shown continually by eSentire’s team of security experts who are committed to 24/7 threat detection, eyes on glass capabilities, and immediate support in case of an incident:
“Being able to have someone you can reach out to if something’s gone sideways and know they’re a trusted partner who understands your environment and the MDR space was essential for us,” Scully said.
Since Venerable’s security team is focused on moving ahead of the business roadmap based on their own end customers’ needs, eSentire has shown the capability to outpace the market in terms of their innovative, and transparent roadmap of services.
“A big part of why eSentire has shown value to us, in addition to the people, is how far ahead they are from a technology standpoint. At Venerable, we are very committed to leveraging cloud technologies and we need a partner whose people and technology are there frst. eSentire’s team has a roadmap that outpaces ours, and starts looking at technologies and solutions before we’ve begun to think about them. eSentire gets ahead of the direction that we’re moving in before we know we’re heading in that direction,” added Scully.
As eSentire continues to grow its services portfolio, by expanding its multi-cloud expertise with MDR for Microsoft & MDR for AWS and deepening its Cyber Investigations capabilities with Incident Response Retainer oferings and Security Incident Response Planning (SIRP) services, organizations similar to Venerable will see considerable benefits in working with a trusted partner like eSentire that can ofer end-to-end risk management.
Organizations within the insurance and fnancial sectors have a bullseye on their backs. Adversaries are targeting them not only due to the client data they store, but also because they are able to use protected policy and premium coverage data to negotiate on ransom payments with the downstream victims.
As more organizations adopt a multi-cloud strategy, it’s imperative that they can keep up with the rate at which cloud technologies are evolving, the increased incidence of cloud misconfgurations, and the necessary security expertise required to get ahead of the threat curve.
A trusted security advisor like eSentire can help simplify multi-cloud security by providing seamless monitoring, scanning and control over your multi-cloud environment while delivering unmatched visibility, correlation and protection from cloud-specifc threats.
eSentire prioritizes the detection of misconfgurations and suspicious activity in the cloud, so your in-house security team can focus on scaling business operations securely. By leveraging eSentire MDR as Venerable has, organizations can beneft from 24/7 threat detection and response as well as cloud security posture management solutions to secure their multi-cloud environments across the AWS, Microsoft, and Google Cloud platforms.
We’re here to help! Submit your information and an eSentire representative will be in touch to help you build a more resilient security operation today.