HomeResources
A shared vision for 360° safety and increased maturity

A shared vision for 360° safety and increased maturity

98%

customer contract renewal

10/10

satisfaction with Sekoia

SNS Security offers 24/7 monitoring, threat detection, incident management, and rapid remediation, helping clients take control of their security with adaptable solutions.

Industry

MSSP/ MDR

feedback with

Joseph Morel

company size

200+ employees

chosen solution

Sekoia SOC platform

A PDF version of this case study is available

Download case study

"Thanks to Sekoia, we have a 360° view of our customers’ cybersecurity, demonstrating the value of their internal cybersecurity investments and enabling them to reach a higher level of maturity."
Offers and Pre-Sales Manager
Joseph Morel

Context

SNS Security is an independent company specializing in cybersecurity.

It offers a full range of services based on three main pillars: project and support, which involves maintaining security infrastructures in operational condition, SOC and IT security consulting.

With its 200+ employees and 20 years of expertise, the company is proud to be able to deliver its services to over 850 customers throughout France, including major corporations, local authorities, French administrations, ETIs, SMEs, start-ups and scale-ups. Its head office is based in Montpellier. However, it also has several local agencies in Paris, Lyon, Nantes and Saintes, as well as privileged contacts based in major economic centers such as Bordeaux, Lille and Nice.

Over the past 3 years, the company has experienced exponential double-digit growth (+50%), driven in particular by the excellence of its SOC and CSIRT teams. Spread over 3 sites, 2 of which are in France, SNS SECURITY also has an international team based in Vietnam, enabling it to operate a high-quality, follow-the-sun service, 24/7.

Sekoia offers an integrated, rapid-to-deploy security solution, enabling SNS Security to effectively protect its customers while increasing productivity and demonstrating the value of cybersecurity investments. It is an exceptional tool which, when complemented by the services of qualified experts, enables us to optimally support companies in their security challenges.

Issues

In 2017, SNS Security teamed up with SentinelOne to offer a managed EDR service to protect its customers’ workstations and servers.

Since then, SNS Security’s offerings have evolved considerably to meet contextual constraints, and in particular the growing needs of customers in a particularly insecure environment. The main challenge was to develop an effective and financially viable SOC, without the high costs associated with a traditional on-premise infrastructure.

To achieve this, the company sought a comprehensive, open SaaS platform with multi-tenant and co-management capabilities, adapted to the requirements of a high-quality shared SOC.

Why the Sekoia AI SOC platform?

The decision to adopt Sekoia was based on several key criteria:

  • Multi-tenant capabilities: The ability to manage multiple customers from a single platform was crucial to offering shared SOC services.
  • Co-management: The solution enables hybrid, transparent management, avoiding “black boxes” where customers have no visibility of operations.
  • Rapid deployment: The solution can be deployed in less than 2-3 hours, enabling fast, efficient implementation.
  • Cyber Threat Intelligence: Native CTI brings a lot of value to detection.

The Sekoia solution stood out for its rapid deployment, advanced CTI capabilities, and proximity to technical teams. It not only enables parsed logs to be processed and searched within the same platform, but also facilitates communication with external tools.

The arrival of the platform, combined with its rapid evolution, has perfectly met SNS Security’s needs, offering a complete and adaptable solution.

Benefits

The solution was quickly adopted by internal teams and customers alike, and SNS Security observed several significant benefits:

  • Operational efficiency: Sekoia has enabled us to effectively correct internal security problems at customer sites, providing a 360° view of cybersecurity in record time.
  • Increased productivity: The integration of Sekoia has demonstrated the benefits of in-house investment in cybersecurity, boosting the company’s productivity.
  • Ongoing support: The Sekoia team provided certification training and ongoing support, ensuring progressive autonomy for SNS Security teams.

Among the platform’s many features, SNS Security particularly appreciates the on-premise playbooks for internal remediation, which enable rapid and effective intervention directly within the customer’s infrastructure.

In addition, the Sekoia collection agent greatly facilitates telemetry reporting, offering enhanced visibility and simplified management of security incidents.

Use cases

SNS Security offers a six-step build process to integrate and optimize security solutions for its customers. This process includes project launch, audit of the customer context, integration of the simplest logs, implementation of security rules, simulation of attacks to test effectiveness, and production launch with monthly co piloting and training of a team at the customer site.

The Sekoia platform meets a number of use cases:

  • Log management: Collect and analyze logs to detect and prevent security incidents.
  • Alert management: Continuous monitoring and alert management for rapid response to threats.
  • Detection and monitoring: Use the platform to detect and monitor suspicious activity in real time.
  • Services: All-inclusive shared SOC, with over 400 custom detection rules and specific developments (integrations, rules) for more mature customers.
FAQ

Can MSSPs use Sekoia with their customers’ existing security tools?

Yes, you can. Sekoia uses an open and extensible architecture to avoid vendor lock-in. It comes with over 300 integrations.

With Sekoia Reveal, you ingest data from existing tools like EDRs, CMDBs, IAM platforms, and vulnerability scanners. On the output side, Sekoia Intelligence feeds high-confidence threat data directly into your customers' SIEMs, SOARs, firewalls, or TIPs via native APIs and TAXII endpoints.

Can Sekoia support any team size?

Yes. Sekoia uses AI to handle the "drudgery" of alert enrichment and triaging. This allows your existing civil servants and IT staff to focus on high-priority strategic missions, rather than being overwhelmed by false positives.

Can we use Sekoia to help meet SOC2 or ISO 27001 requirements?

Yes. By centralizing your logs and providing automated incident reporting, Sekoia serves as a continuous evidence engine.

How does Sekoia support multi-tenant MSSP security operations?

The platform has built-in features to manage multiple communities from a single view. Through Sekoia Elevate, you can tailor the AI agent's context and memory for each specific sub-tenant. This lets the platform handle every customer’s unique environment and edge cases perfectly.

Related case studies

How REST Solution boosted its managed SOC business with Sekoia

read story

US MSSP leverages Sekoia automation to deliver affordable, enterprise-grade cybersecurity

read story

How does Monaco Cyber Sécurité ensure data residency compliance with Sekoia?

read story

Cybersecurity for SMBs: Sekoia powers SOC by Tibco

read story