Discover what AT&T managed threat detection and response can do for you
Break through the cost and complexity of protecting your business
Features and highlights
A virtually seamless orchestration of people, process, and technology
|Unified security management||Our award-winning unified security management (USM) platform combines multiple security capabilities for comprehensive threat context, including asset discovery, vulnerability assessment, intrusion detection, SIEM event correlation, and much more.|
|Continuous threat intelligence||AT&T Alien Labs uses its unrivaled visibility to curate and deliver actionable threat intelligence to the USM platform to keep your defenses strong against advanced threats as they emerge and evolve in the wild.|
|AT&T SOC expertise||Building on our decades of experience as one of the world’s largest managed security services providers, our expert SOC analysts work to protect your organization 24x7 and to support your security and compliance goals.|
|Security orchestration and automation||With SOAR capabilities and 300+ integrations in the USM platform, we work to streamline and accelerate incident response actions, whether you manage the security technology or we manage it for you in the AT&T SOC.|
Explore more about AT&T managed cybersecurity solutions
AT&T Cybersecurity exceeds standard market definitions for a Managed Detection and Response (MDR) service. Our unified solution combines our own technology platform, threat intelligence, and SOC expertise, helping you to protect your business 24x7 faster and at a starting price less than what it would take you to hire a single security analyst.
AT&T managed threat detection and response is built on our own Unified Security Management (USM) platform, which combines the essential security capabilities needed for effective threat detection and response in a single pane of glass. Key capabilities include asset discovery, vulnerability assessment, Network Intrusion Detection (NIDS), Endpoint Detection and Response (EDR), and SIEM event correlation and log management. In addition, through the platform’s AlienApps integration framework, the security monitoring and orchestration capabilities can extend to other security technologies, such as Palo Alto Networks® Next-Generation Firewall, giving you broad threat coverage for effective, early detection and rapid response.
With AT&T managed threat detection and response, you have a team of skilled security professionals working with you on your security program without having to recruit and onboard new employees. Our SOC analysts act as an extension of your in-house security team, working with your security or IT personnel to investigate and respond to security incidents. Your security team and ours share visibility of your USM platform deployment, and you can determine what level of co-management best suits your needs. Our analyst team is available to you 24x7 by phone, email, and Slack.
In addition to continuous monitoring and incident investigation, our analyst team leads weekly review calls with your security team to cover all investigations and incident response activities. Our analysts host monthly meetings with your team to review service metrics related to our SLAs, and to review progress towards your security program objectives and may provide recommendations for improvements.
The solution continuously and automatically collects logs and other security-relevant information from your environments, centralizing data in the AT&T SOC’s highly secure cloud environment.
Raw and normalized event data are available for searching and reporting within the USM platform with a rolling 90 days of retention. Alarms and investigations are retained and accessible in the platform for one year. In addition to this searchable, online event data, all log data is stored in cold storage with a rolling 365 days of retention and the opportunity to extend your retention period for an additional fee. You may download your raw log data through the USM platform at any time.
Your log data is stored in a compliance-certified environment, which can help to streamline and accelerate your own compliance goals. The USM platform and Information Security Management System that governs our production environment have earned multiple compliance certifications by third-party assessors, including for PCI DSS, ISO 27001, SOC 2 Type 2, as well as attestations of HIPAA compliance and GDPR readiness.
With the goal of getting your AT&T managed threat detection and response service fully operational within the first 30 days of signing your contract, our SOC analyst team conducts an onsite onboarding engagement with your team at your earliest availability. During this onboarding engagement, our analysts install, configure, and tune your USM platform deployment according to your requirements. Additionally, our analysts handle customizations and integration with other security technologies that are in scope of our AlienApps framework.
Going beyond the initial technology implementation, our analysts use this onboarding engagement as an opportunity to train and enable your security personnel on the platform, to lead a threat modeling exercise, and to develop or review your incident response plan in collaboration with your security team.
AT&T managed threat detection and response helps to support your compliance and risk management goals in multiple ways. First, the USM platform combines multiple security capabilities that can help you to demonstrate compliance with many common technical requirements and controls defined in regulatory standards. For example, the platform can help you to address nearly 40 PCI DSS technical requirements. Second, as part of our threat modeling exercise, we address your specific compliance requirements and your security monitoring environment is tuned accordingly. For example, we can help you to create a HIPAA asset group that contains all assets that transmit, process, or store ePHI data. Third, your AT&T SOC analyst team can support your compliance reporting requirements as part of your audit readiness process using the pre-built and highly customizable reporting templates in the USM platform.
AT&T managed threat detection and response is priced according to the total amount of online, searchable events you retain (GB or TB) over a rolling 90-day window, so you don’t have to worry about limitations by assets, environments, or number of employees in your organization. Instead, you can get the full threat coverage you need to help protect your critical data and systems.
Speak to a sales rep
Your feedback will help us to improve AT&T Business so you continue to have a great experience when visiting us!
This survey is conducted by an independent company ForeSee for AT&T.