SOC as a service in comparison

Essential - Standard - Premium

Which SOC as a Service for your needs?

Today, IT systems are constantly being targeted by cyber criminals and attacks are often difficult to detect. The consequences range from business interruption to a threat to the company’s existence.

An external Security Operations Center (SOC) provides the necessary visibility and responsiveness. SOCaaS (Security Operations Center as a Service) from agilimo provides external proactive defense measures – scalable, available around the clock and operated entirely in Germany.

With agilimo’s modular SOCaaS packages , you will find exactly the right security solution for your company. Whether basic monitoring or a highly regulated environment – you choose the right package and can flexibly switch to an extended model at any time as your requirements grow. This way, your cyber defense grows reliably with you – at predictable and transparent costs.

Our services

For whom is an external SOC useful?

  • Companies that must comply with KRITIS regulations
  • All organizations that want to protect themselves effectively against cyberattacks
  • All companies/organizations that want to monitor their systems 24/7
  • All companies/organizations that do not want to rely solely on a virus scanner
  • Companies that must comply with the NIS2 regulations

SOCaaS - Managed Security Module from agilimo in comparison

With the scalable SOCaaS modules, you can secure your company precisely and expand the protection flexibly as your requirements grow.

agilimo SOC plans
for SMEs
SOC Essential
from € 38.40 / client
from € 91.20 / server
Request a quote
Middle class
SOC Standard
from € 57.60 / client
from € 158.40 / server
Request a quote
High Security
SOC Premium
on request /
Make an appointment
Request a quote
System monitoring via EDR
Customer dashboard
Overview of safety-relevant events
24/7 SOC monitoring
Detailed description of this feature.
Automated ticket creation
for verified security-relevant incidents
1 service report per quarter
Darkscan Essentials
Data storage 30 days
Data storage for up to 180 days
Optional
Asgard Agent
Optional
Incident Response Essential
System monitoring using XDR
Reports & review meetings (monthly)
Detailed description of this feature.
Integration of e-mail distribution list
Detailed description of this feature.
Log file analysis
incl. installation of the log collector
Dedicated detection rules - development and use
Connection of common systems
Darkscan Premium
Optional
Optional
Forensic scans
with APT scanner Thor
Optional
Optional
The scans are performed continuously
Custom Integrations
Development and connection
Additional reports on request
SLA within 15 - 30 minutes
for critical incidents
Telephone availability SOC Team
Proactive threat hunting
Existing SIEM/SOAR systems
(full integration & operation)
Real-time customer dashboard with live data
Singe Point of Contact (SPOC)
Incident Response
Optional
Optional
Optional
for real incidents

SOC Essential

SOC Essential creates a verifiable basic security level in accordance with BSI/NIS2 with automated alarms and monitoring.

Who is SOC Essential suitable for? Perfect for SMEs that want to implement their first regulatory steps: With automated alarms and monitoring, you create a verifiable basic level of security in accordance with BSI/NIS2.

The goal of SOC Essential: Fast, cost-efficient protection without high complexity.

The advantages of SOC Essential:

  • Low barrier to entry, transparent cost structure
  • Fast integration & basic protection
  • Ideal for start-ups and small companies

The benefits of SOC Essential

  • Monitoring of systems using EDR (Endpoint Detection & Response)
  • Customer dashboard
    with overview of security-relevant events
  • Monitoring by the Security Operations Center (SOC),
    outside the customer’s regular business hours.
  • Automated ticket creation for verified security-relevant incidents;
    Severity: high and critical.
  • 30 days data storage;
    can be optionally extended to up to 180 days.
  • A quarterly service report;
    including examples of recognized security-relevant events.
  • Darkscan Essentials;
    including a one-time initial darkscan (OSINT & Darknet scans).
  • Optional: Asgard Agent (Incident Response Essential),
    for rapid responses in an emergency using the APT scanner THOR.

SOC Standard

SOC Standard fulfills key requirements from BSI 200-x and NIS2: proactive alerting, log file evaluation, OSINT monitoring and compliance-compliant review processes.

Who is SOC Standard suitable for? For medium-sized companies with increased protection requirements.

The aim of SOC Standard: Structured threat detection with proactive security.

The advantages of SOC Standard:

  • Significantly improved response & early detection
  • Stronger compliance foundation
  • Customized rules for your company

The services of SOC Standard

  • All services from the “SOC Essential” package plus
  • Monitoring of systems using EDR and XDR (Extended Detection & Response)
    for holistic threat detection.
  • 24/7 monitoring by the Security Operations Center (SOC),
    so that you are protected at all times.
  • Data storage of up to 180 days,
    for in-depth analysis and long-term decisions.
  • Monthly reports and review meetings.
    We keep you regularly informed and discuss relevant security aspects.
  • Integration in e-mail distribution lists,
    for targeted notification of security-relevant incidents.
  • Log file analysis incl. installation of the Log Collector ,
    for comprehensive detection of suspicious activity.
  • Development and use of dedicated detection rules,
    for application-specific threat detection and avoidance of false alarms.
  • Asgard Agent (Incident Response Essential),
    for rapid responses in an emergency by the APT scanner THOR.
  • Connection of common systems,
    such as Microsoft 365, Active Directory, firewalls (e.g. via syslog) – for a centralized view of your security situation.
  • Support with the technical implementation of ISO 27001/BSI requirements,
    to ensure adherence to relevant compliance standards.

SOC Premium

SOC Premium fulfills NIS2, BSI basic protection and ISO27001, incl. audit reports, SLA-controlled incident processing, threat intelligence, 24/7 incident response, SIEM integration.

For whom is SOC Premium suitable: for organizations with the highest requirements & compliance obligations.

The aim of SOC Premium: maximum security, transparency and speed of response.

The advantages of SOC Premium:

  • Comprehensive protection & continuous optimization
  • Exclusive SOC support with senior expertise
  • Ideal for regulated industries (finance, healthcare, etc.)

The services of SOC Premium

  • All services from the “SOC Standard” package plus
  • Development and connection of custom integrations
    for the integration of individual systems and data sources.
  • Additional reports on request,
    and monthly strategy and safety meeting.
  • SLA: Response time for critical incidents within 15-30 minutes
  • Telephone availability of the SOC team
  • Proactive threat hunting,
    Including connection of individual threat intelligence feeds.
  • Full integration and operation of existing SIEM/SOAR systems
  • Customer dashboard with live data in real time
  • Enhanced compliance reporting in accordance with ISO 27001, BSI and other regulatory requirements,
    to maintain a consistent level of security.
  • Darkscan Premium,
    with in-depth darknet analyses and extended search areas.
  • Continuous forensic scans with the APT scanner THOR,
    for fast reactions in an emergency.
  • Single Point of Contact (SPOC),
    Your fixed and direct contact.
  • Optional: Incident response for real incidents,
    in cooperation with a qualified partner team.