ACTIVE THREAT ADVISORY: Iranian state-sponsored APT activity is escalating. Vijilan is offering ThreatRespond at no cost to qualifying MSP/MSSP partners. See if you qualify

Pricing
Book A Call
Book A Call
Pricing
Book A Call
Book A Call
Vendor-Agnostic Managed XDR · ThreatRespond™

Your Technology. Our SOC. Every Threat Covered.

Vijilan’s 24/7 human SOC monitors and responds across all six security domains using whatever technology your clients already run — any EDR, any firewall, any cloud. No rip-and-replace. At Premium tier, we act on existing tools without replacing a single one.

Become a Partner
Explore ThreatRespond™
1m
median time to contain
6
security domains
~1hr
full onboarding
None
minimums or lock-in
What ThreatRespond Is

Vendor-agnostic means exactly that.

ThreatRespond integrates with whatever tools the client already runs. Vijilan’s ThreatSensor virtual appliance, powered by Cribl Stream, ingests and normalizes every signal across every domain in about one hour. No agents to install beyond ThreatSensor. No technology to replace.

  • 24/7 human SOC - all 6 domains, always on
  • Vijilan SIEM (LogScale) - no data volume charges
  • Full white-label - every tier, every touchpoint
  • PSA integration - ConnectWise, Autotask, HaloPSA
  • No minimums, no lock-in, 30-day opt-out trial
  • SOC 2 Type 2 + ISO 27001 certified
Technology Integrations

Works With the Stack Clients Already Have

  • EDR: CrowdStrike, SentinelOne, Defender, Carbon Black, Cortex XDR, Sophos
  • Network: Fortinet, Palo Alto, Cisco, Meraki, SonicWall, Juniper, pfSense
  • Identity: Entra ID, Active Directory, Okta, Google Workspace, Cisco Duo
  • Cloud + email: Microsoft 365, Mimecast, Proofpoint, AWS, Azure, GCP
All 6 Security Domains - Both Products - Always

Endpoint

Workstations, laptops and servers monitored through whatever EDR the client already runs. No agent conflicts and no displacement.

CrowdStrike, SentinelOne, Defender, Carbon Black, Cortex XDR, Sophos

Network

Firewall logs, IDS/IPS events and network flows ingested from any vendor through ThreatSensor.

Fortinet, Palo Alto, Cisco, Meraki, SonicWall, Juniper, pfSense

Identity

Every login, privilege change and suspicious access pattern. Identity is monitored on every tier.

Entra ID, Active Directory, Okta, Google Workspace, Cisco Duo, RSA

Cloud & SaaS

Cloud workloads, SaaS apps, configuration changes and access events correlated with endpoint and identity signals.

Microsoft 365, Azure, AWS CloudTrail, GuardDuty, GCP, Google Workspace

Email & Data

Phishing, BEC, mailbox forwarding rules and data exfiltration. At Premium, the SOC can block domains directly.

Mimecast, Proofpoint, Defender for O365, Barracuda, Exchange

Apps, IoT & OT

Web application logs, API events, IoT device signals, OT/SCADA systems and mobile devices.

IIS, Web Apps, APIs, IoT Devices, OT/SCADA, Mobile
Four Service Tiers

All Include SIEM, PSA Integration & Full White-Label

Core and Advanced guide response. Premium acts on the client’s existing technology. Elite adds bespoke engineering and advisory support.

24/7 SOC across all six domains

Core

Any EDR, network/firewall monitoring, AD + Entra ID, Microsoft 365 monitoring, 90-day SIEM and guided remediation.

  • Full white-label
  • PSA integration
  • ThreatSensor virtual appliance
  • Guided - SOC instructs
Compliance Fit

Basic + 1 framework

Compliance + full identity coverage

Advanced

Core plus full ITDR, Okta, Google Workspace, AWS/Azure/GCP, dark web monitoring, 1-year SIEM, QBR templates and ThreatAssess scans.

  • HIPAA, PCI DSS, NIST CSF, CMMC L1
  • 20 ThreatAssess scans/month
  • White-labeled QBR templates
  • Guided - SOC instructs
Compliance Fit

HIPAA, PCI DSS 4.0, NIST CSF 2.0, CMMC L1

SOC acts on existing tech

Premium

Advanced plus SOC isolation of SentinelOne/Defender hosts, Entra ID account disablement, phishing domain blocks, firewall rule enforcement, exposure management and threat hunting.

  • Named SOC concierge
  • Threat hunting all six domains
  • Unlimited ThreatAssess scans
  • SOC Acts on Existing Tech
Compliance Fit

CMMC L2 + SOC 2 audit evidence

Enterprise MSSPs + bespoke

Elite

Premium plus custom detection engineering, vCISO, 1-hour IR retainer, forward-deployed engineer, CMMC L3, DORA and NIS2.

  • Custom engineering
  • vCISO advisory
  • Cribl pipeline optimization
  • Full Active mXDR + bespoke
Compliance Fit

CMMC L3, DORA, NIS2

Praxis AI Engine - Powering the Vijilan SOC

AI That Thinks. Humans Who Act.

Praxis is Vijilan’s internal AI detection and investigation engine. Every alert from every domain runs through Praxis before a human analyst sees it — enriched with threat context, MITRE ATT&CK mapping and severity scoring derived from real adversary behavior.

  • LangGraph Multi-Agent
  • MITRE ATT&CK Mapping
  • IOC Enrichment
  • Auto-Triage
  • Behavioral Correlation
  • RAG Threat Context
Why Partners Choose ThreatRespond
  • Only vendor that acts on clients' existing tools at Premium
  • SIEM included - no data volume charges ever
  • Full white-label at every tier including Core
  • No minimums - start with a single client
  • About 1 hour onboarding through ThreatSensor
  • SOC 2 Type 2 + ISO 27001 audit-ready documentation
Channel-Exclusive Managed Cybersecurity

Ready to Wrap Our SOC Around Your Clients' Stack?

ThreatRespond is priced per endpoint and per user per month. No flat fees, no data volume charges. Pricing scales with the client, not against them. Estimate your investment at prospect.vijilan.com or request a quote through your Channel Manager.

  • Channel-exclusive
  • No minimums
  • 30-day opt-out trial
  • About 1 hour first client onboarding
  • Channel Partner Use Only - not for distribution to end clients without co-branding
Become a Partner
Sales Center