SaaS Alerts, a cybersecurity company delivering an automated software-as-a-service (SaaS) security platform that enables managed service providers (MSPs) to detect and stop unauthorized activity in client SaaS applications, announced the integration of Microsoft Defender for Endpoint into its SaaS security platform.
Integrating Defender into the SaaS Alerts platform provides MSPs with a single pane to view Microsoft’s Identity monitoring, Microsoft 365 application suite, and the endpoint detection and response (EDR) solution.
Risk of data breaches
SaaS Alerts CEO Jim Lippie said this level of visibility will help MSPs ensure comprehensive endpoint security, reduce the risk of data breaches, and improve the overall security posture of their SMB clients.
“By combining Microsoft Defender with our existing support for Microsoft 365 we’re enabling MSPs to protect their clients across the cloud and their devices and be rewarded with additional revenue at the same time,” Lippie said. “This combination significantly enhances our existing security capabilities and sets the stage for additional integrations later this year.”
SaaS Alerts Respond module
Microsoft Defender for Endpoint holds the largest market share in the endpoint security market
Microsoft Defender for Endpoint holds the largest market share in the endpoint security market, capturing 18.9% in 2022. Microsoft Defender Threat Intelligence processes over 78 trillion signals daily, providing extensive visibility into the global threat landscape.
The Microsoft threat security software is the latest addition to SaaS Alerts’ integrations, which include Microsoft 365, Google Workspace, Slack, Dropbox, Salesforce, Okta, and Duo. The SaaS Alerts Respond module was initially launched in 2022 to allow MSPs to automatically remediate SaaS security threats in Microsoft 365 and Google Workspace. This functionality will extend to Microsoft Defender.
How it works
SaaS Alerts pulls alerts from Microsoft Defender, enriches the data provided by Microsoft and then generates alerts within the SaaS Alerts platform, enabling these benefits:
- PSA Ticketing – SaaS Alerts enables Microsoft Defender to integrate directly with PSAs, sending alerts directly to MSPs over a single ticket.
- Centralized Alerting and Reporting – All alerts are centralized and reported over a built-in, multi-tenant view of alert data across all clients. SaaS Alerts will consolidate all alerts into the SaaS Alerts platform, eliminating the need for MSPs to log into each client account to see alerts.
- Customized Respond Rules – MSPs can also use the SaaS Alerts Respond module to set up automation rules that include device-level indicators of compromise (IOCs). For example, if an endpoint device is infected with a credential-stealing virus, and within four hours of that happening an MFA failure from an unexpected device or location happens, the associated SaaS account can be locked immediately.
SaaS Alerts will include support for Microsoft Defender for Endpoint in August as part of the standard SaaS Alerts subscription, which includes a free 14-day trial.
From facial recognition to LiDAR, explore the innovations redefining gaming surveillance
