Cyber security
Download PDF version Contact company
Related Links

SaaS Alerts, a cybersecurity company delivering an automated software-as-a-service (SaaS) security platform that enables managed service providers (MSPs) to detect and stop unauthorised activity in client SaaS applications, announced the integration of Microsoft Defender for Endpoint into its SaaS security platform.

Integrating Defender into the SaaS Alerts platform provides MSPs with a single pane to view Microsoft’s Identity monitoring, Microsoft 365 application suite, and the endpoint detection and response (EDR) solution.

Risk of data breaches

SaaS Alerts CEO Jim Lippie said this level of visibility will help MSPs ensure comprehensive endpoint security, reduce the risk of data breaches, and improve the overall security posture of their SMB clients.

By combining Microsoft Defender with our existing support for Microsoft 365 we’re enabling MSPs to protect their clients across the cloud and their devices and be rewarded with additional revenue at the same time,” Lippie said. “This combination significantly enhances our existing security capabilities and sets the stage for additional integrations later this year.”

SaaS Alerts Respond module

Microsoft Defender for Endpoint holds the largest market share in the endpoint security market

Microsoft Defender for Endpoint holds the largest market share in the endpoint security market, capturing 18.9% in 2022. Microsoft Defender Threat Intelligence processes over 78 trillion signals daily, providing extensive visibility into the global threat landscape.  

The Microsoft threat security software is the latest addition to SaaS Alerts’ integrations, which include Microsoft 365, Google Workspace, Slack, Dropbox, Salesforce, Okta and Duo. The SaaS Alerts Respond module was initially launched in 2022 to allow MSPs to automatically remediate SaaS security threats in Microsoft 365 and Google Workspace. This functionality will extend to Microsoft Defender. 

How it works

SaaS Alerts pulls alerts from Microsoft Defender, enriches the data provided by Microsoft and then generates alerts within the SaaS Alerts platform, enabling these benefits: 

  • PSA Ticketing – SaaS Alerts enables Microsoft Defender to integrate directly with PSAs, sending alerts directly to MSPs over a single ticket. 
  • Centralised Alerting and Reporting – All alerts are centralised and reported over a built-in, multi-tenant view of alert data across all clients. SaaS Alerts will consolidate all alerts into the SaaS Alerts platform, eliminating the need for MSPs to log into each client account to see alerts.  
  • Customised Respond Rules – MSPs can also use the SaaS Alerts Respond module to set up automation rules that include device-level indicators of compromise (IOCs). For example, if an endpoint device is infected with a credential-stealing virus, and within four hours of that happening an MFA failure from an unexpected device or location happens, the associated SaaS account can be locked immediately. 

SaaS Alerts will include support for Microsoft Defender for Endpoint in August as part of the standard SaaS Alerts subscription, which includes a free 14-day trial.

Download PDF version Download PDF version
Related white papers
Palm vein recognition

Palm vein recognition

Download
Cybersecurity for enterprise: The essential guide to protecting your business

Cybersecurity for enterprise: The essential guide to protecting your business

Download
The security challenges of data centers

The security challenges of data centers

Download
Related articles
How physical security consultants ensure cybersecurity for end users

How physical security consultants ensure cybersecurity for end users
How managed detection and response enhances cybersecurity management in organisations

How managed detection and response enhances cybersecurity management in organisations
Drawbacks of PenTests and ethical hacking for the security industry

Drawbacks of PenTests and ethical hacking for the security industry