SOLUTIONS

Managed Detection and Response ➔

Our MDR provides end-to-end attack surface coverage, proactive threat hunting and Incident Response.

Compromise Assessment ➔

Learn what is happening in your network right now, and get full assurance you are not compromised.

SIEM as a Service ➔

Get superior visibility and threat detection with our cloud SIEM/XDR platform, with the full service operational in minutes.

Incident Response ➔

Get expert support through the whole incident response lifecycle.

HOW IT WORKS

XDR Platform ➔

Get deep visibility across endpoint, network, cloud and your digital supply chain.

td_CLOUD ➔

Continuous cloud assurance, configuration and posture management.

td_ENDPOINT ➔

Detect and respond to the most sophisticated endpoint threats.

td_NETWORK➔

Always-on network monitoring for advanced threats and suspicious behaviour.

PARTNERS

SOC for MSP’s ➔

Start providing advanced 24×7 cyber security services to your customers tomorrow.

Become a Partner ➔

Our partner program helps you start immediately and provides full support with technology, customer on-boarding, sales and marketing, as well as personalised training and reporting.

COMPANY

Who We Are ➔

ThreatDefence is the only Australian vendor providing innovative MDR, SOC-as-a-Service, and proactive cyber defence solutions to MSPs and Enterprises.

Careers ➔

We are looking for the best. Join our team, grow quickly, and become part our global success.

News ➔

Learn more from our latest news.

Case Studies ➔

Learn what our customers say about us.

Contact Us ➔

Our cyber security experts are ready to help. Contact us and get your answers today.

Cloud SIEM as a Service

Get superior visibility and integration with our managed SIEM platform, with the full service operational in minutes.

Our cloud SIEM service provides centralised security monitoring for your cloud, on-premises, or hybrid environments, covering your endpoints, network, syslog, and cloud instances like AWS, Azure, Office 365, and G-Suite.

The platform provides rich functionality similar to custom, purpose-built solutions, delivering unprecedented integration and visibility capabilities.

Delivered as a fully managed cloud service, our platform can be operational in minutes, saving time, resources, and overall cost of ownership. There is no learning curve as you do not need to configure or manage the platform. Our team will do everything for you.

Deploy our cloud SIEM now, visualise all the security data your business has, expose vulnerable systems, and start detecting threats missed by others.

Threat-Intelligence
Integration Guarantee
We want your data to work for you – we guarantee that we can ingest data from your environment, would it be an enterprise system or a bespoke application.
Multi-Tenancy-1
Multi-Tenancy
We support multi-tenancy for MSPs, multi-brand organisations, or Merger & Acquisition scenarios.
Cloud-Visibility
Single Pane of Glass
Your entire digital footprint is visualised on a single dashboard, providing a detailed cyber risk overview for the entire organisation.
Cloud-Visibility-2
Detection & Response
Activate our 24x7x365 SOC services anytime for advanced threat detection, response and threat hunting.

Designed For Threat Detection And Response

The platform provides the complete toolset to support efficient security operations capability on a scale. Your security data will be continuously enriched with our threat intelligence, with advanced correlations and threat detections applied in real-time.

Windows/Linux/Mac endpoints.

Dark web.

External and internal vulnerabilities.

Network Behaviour and network flows.

Public cloud systems.

SaaS and bespoke applications.

customer portal

Cyber risk factors of third-party vendors.

Threat Intelligence.

Windows
Windows/Linux/Mac endpoints
Dark-web
Dark web
External-and-internal-vulnerabilities
External and internal vulnerabilities
icon_2
Network Behaviour and netword flows
icon_3-2
Public cloud systems
Software-supply-chain-security
SaaS and bespoke applications
External-and-internal-vulnerabilities
Cyber risk factors of third-party vendors
icon_7-1
Threat Intelligence

Fast Track Your Security Operations

The service provides everything you need to start your security operations program, supporting all your systems and operations from day one.

We provide you with access to our platform and all essential tools: threat intel, behaviour analytics, machine learning - integrated with any cloud, any data.

The platform is supplied with rich threat intelligence already integrated to your security data, providing immediate threat awareness and attribution.

Built-in automation saves you time, effort and money. You do not need to spend 2 years building your capabilities. Have it on day one instead.

The platform is supplied with hundreds of built-in detections and correlations, with new detections being added daily.

Fully Ready for MSP’s

The platform is fully ready for MSP’s, and provides robust multi-tenancy features, SSO capabilities, SOC dashboards with aggregated data from all your tenants, and rich reporting. You can provide your customers with full access to their instances, or deploy a dedicated Customer Portal for them with predefined reporting templates based on high-level security posture overview or specific compliance frameworks.

AUSTRALIAN TECHNOLOGY

  • Designed, developed, hosted, and managed in Australia.
  • No minimum commitment for Australian MSP’s.
  • Unrestricted integration capability, support for any log source or custom data.
  • 24×7 SOC based in Sydney.

DEVELOPED FOR MSP’s

  • Easy installation, management, and support; 100% cloud-based platform.
  • Multi-tenant environment, search and report across all of your tenants.
  • Comes with integrated threat intelligence, dark web monitoring, vulnerability management, automated security. assessment, and many other features
  • White-labelled Customer Portal and Analyst Console.

EASY DEPLOYMENT

  • A lightweight agent deploys in seconds without any impact on user productivity.
  • An extensive library of ready-to-go cloud and Syslog integrations.
  • Designed, developed, hosted, and managed in Australia.
  • Automated deployment option.

Our MSP provides you with all you need to start your security operations

FIND OUT MORE

Cloud Stack Visibility

We support any cloud services you might have, including any cloud-native services running on AWS, Microsoft Azure, or GCP. Our cloud sensors integrate into your cloud instances and provide immediate visibility, configuration auditing, vulnerability management, and threat detection.

User Actions and Behaviour

The platform automatically captures all user and machine activities and provides integrated machine learning capabilities to automatically detect any deviations. You can see suspicious processes, unusual user logins, rare events, unexpected file downloads, and many others.

Integrated Alerting and Reporting

ThreatDefence SIEM monitors your security events end-to-end and presents all detections and alerts in a single page of glass. Visualise your cloud, network, endpoint, Syslog, application, the dark web, and other data sources in a single platform, with a unified context for investigations and detections.

Rich XDR Functionality

ThreatDefence SIEM monitors your security events end-to-end and presents all detections and alerts in a single page of glass. Visualise your cloud, network, endpoint, Syslog, application, the dark web, and other data sources in a single platform, with a unified context for investigations and detections.

We cover the entire enterprise attack surface, integrating all security systems and applications you might have, Be it your firewalls, access points, endpoint protection systems, security gateways, authentication systems, or anything else.

Our SIEM/XDR platform is provided with lightweight sensors that can be deployed on-premises or in your cloud environments. Our Network, Endpoint, and Cloud sensors can be rolled out in minutes and immediately ingest your data. You will see data streaming to your dashboards in real-time.

ENDPOINT
_ENDPOINT
Advanced endpoint visibility, forensic analysis of endpoint telemetry, detection and response
Network
_NETWORK
Detect insider threat and lateral movement with network-based intrusion detection and packet analysis
CLOUD
_CLOUD
Multi-cloud security insights, cloud workload vulnerability management and continuous risk assessment
OSINT
_OSINT
Continuously integrated Open Source Intelligence, including indicators from Dark Web, Social media, and third-party vulnerabilities
ANYTHING
_ANYTHING
Any standard or custom application or log source, completely integrated into the platform

Protect Your Organisation With ThreatDefence

Get In Touch
Linkedin Twitter
Solutions
How It Works
Partners
Company
  • 1300 122 434
  • team@threatdefence.com
Linkedin Twitter

© 2021 ThreatDefence Pty Ltd All Rights Reserved | Privacy Policy | Terms Of Service