Check Point MDR

According to Microsoft’s Digital Defense Report 2024, over 600 million cyberattacks are made every day. Malicious actors are professional and well-resourced, making the attacks more effective and sophisticated day by day.

As cyberattacks and threats grow, protection alone is often not enough, but even good protection needs to be supplemented with continuous monitoring as well as rapid response, every day, every hour of the day.

Check Point MDR

Check Point MDR (Managed Detection and Response) combines 24/7 technical monitoring and rapid response by information security personnel to threats.

24x7x365 reaction to information security threats.
The proactive solution prevents the exploitation of vulnerabilities.
Analysing and hardening of the customer environment and continuous threat hunting.
The detected alarms and deviations are routed to the customer or to the customer’s SPOC partner, as agreed (see Enter Valvomo).
A customer-specific online portal provides a detailed view of all incidents, threat analyses and safety recommendations.
Adapts to the entire IT infrastructure, whether it is protected by a Check Point security product or the products of other security suppliers, such as Microsoft (Enter Turva), Fortinet, Cisco, Palo Alto, CrowdStrike.

30-minute response time

Check Point promises a 30-minute SLA for detected security threats. However, the average response time is about ten minutes. At a general level, it takes organisations that have been affected by a cybercrime up to nine months and more to detect and report the security breach.

When one is affected by a cyberattack, the speed of reaction is a determining factor. The affected system must be immediately quarantined to limit the damage and to start remedial action. With extensive damage, the organisation may come to a halt for an unspecified period.

Check Point’s incident response team, included in the service, will investigate the background and enablers of the attack to prevent future attacks. The service includes 100 hours of Check Point’s incident response team work annually.

Rapid deployment without installation

Check Point MDR does not require the installation of separate agents. Instead, it integrates directly into the information security solution used. This makes it possible to deploy the service in as little as in two weeks. Check Point MDR features wide system support and adapts easily to the customer’s environment, often allowing continued operation with the existing security solution. Future security extensions can also be easily included in the monitoring.