While most of us were enjoying the festive cheer, SEP2’s Security Operations Centre (SOC) was hard at work, ensuring that security stops for no one—not even Santa. Operating 24×7, 365 days a year, SEP2 is committed to keeping our customers safe and secure, no matter the season.

This past Christmas, one of our valued customers faced a potential security incident. Thanks to SEP2’s vigilant SOC and Analysis and Response teams, we were ready to spring into action. The incident was detected through our MITRE ATT&CK-aligned monitoring strategy, which is tailored to our customer’s key technology landscapes, with a detection library that has been honed through real world scenarios and active testing.

Recognising this as a potential security breach, our team used the SEP2.security MDR SecOps SOAR platform to orchestrate an effective response to the threat. We promptly engaged with our customer’s systems to perform appropriate remediation against the account.

Communication for this event was seamlessly managed through our standard escalation channels with the customer, ensuring that the key communication and response phase of the incident was completed in under 30 minutes. The threat was fully mitigated in less than two hours, showcasing the efficiency and expertise of SEP2’s security team in swiftly addressing and neutralising potential risks.

At SEP2, we are continually refining our detection and response playbooks in collaboration with our customers. Our focus remains on enhancing our response capabilities across primary enterprise platforms, including Endpoint, Identity, and Workload security.