Complete IT teams up with Huntress
While not everyone is subject to compliance standards such as PCI and HIPAA, we’re all concerned with security. The adoption of cloud, an increasingly mobile workforce, and a vast increase in mobile devices have greatly expanded the number of entry points that can pose a risk to your data.
Understanding the challenges
Gathering data from firewalls, anti-virus agents, and security logs from hundreds of devices is by itself a substantial task. Analyzing this data is yet another hurdle, and when an attack is in progress, it’s imperative to act quickly. To add yet another layer of complexity, some attacks are subtle and can easily go unnoticed. For example, an attacker could gain unauthorized access to a mailbox and simply gather intelligence without taking any action. Confidential communication would be immediately accessible, allowing the attacker to craft credible communication to finance, human resources, executives, or even partners of the organization for personal gain.
Introducing Huntress SOC
Complete IT has partnered with Huntress to combat modern cyber threats with advanced detection and response capabilities. While traditional tools often miss sophisticated “living-off-the-land” attacks, the Huntress Security Operations Center (SOC) provides 24/7 human-led monitoring across your endpoints, network, and cloud environments. This partnership gives us real-time, comprehensive insight and a dedicated team of elite threat hunters backing your organization.
The most important benefits are easily summarized:
Persistent Threat Detection: We look beyond simple malware to find the hidden persistence mechanisms hackers use to stay inside a network undetected.
24/7 Human-Led Monitoring: Your systems are monitored by expert analysts who triage alerts and remove the “noise,” ensuring we only act on real, validated threats.
Rapid Incident Isolation: When a threat is confirmed, we can instantly isolate infected host machines from the network. This halts the spread of malicious code while maintaining our remote access for immediate remediation.
Evolving Intelligence: We leverage the Huntress “Neighborhood Watch” threat intelligence, which identifies new exploits across thousands of global networks the moment they emerge.
Responding to threats
When an incident occurs, the Huntress SOC begins an investigation within minutes. Our response coordination with Complete IT follows these aggressive timelines:
| Identified issue and response time (Detection / Notification / Action) | |
|---|---|
| System breached or attack in progress. | 1 Min / 5 Min / 10 Min |
| AV quarantine action failed, O365 forwarding rules detected, O365 Successful login from other countries detected. | 1 Min / 5 Min / 10 Min |
| Unusual activity, but no breach by malicious party was detected. | 2 Min / 10 Min / As Needed |
| System is showing failed logon attempts or other events generated by customer network systems or users and not part of a cybersecurity threat. | 2 Min / 10 Min / As Needed |
| No effect on the system – informational data only which may be useful for investigation. | 5 Min / As Needed / As Needed |
Additional information
These capabilities go beyond simple log monitoring to provide a comprehensive security solution that we are proud to now offer. For full details, please review the PDF provided below, or reach out to us with any questions you may have!
— The Complete IT Team