HomeResources
US MSSP leverages Sekoia automation to deliver affordable, enterprise-grade cybersecurity

US MSSP leverages Sekoia automation to deliver affordable, enterprise-grade cybersecurity

150

end customers in the US with Sekoia technology

8/10

satisfaction with Sekoia

This partner is a dynamic Managed Security Service Provider (MSSP) based in the United States. Their mission is centered on providing holistic cybersecurity that offers organizations comprehensive, ongoing protection. They aim to make stronger cybersecurity possible for all organizations, particularly targeting busy and often under-resourced IT teams.

Industry

MSSP/ MDR

feedback with

US-based MSSP partner

chosen solution

Sekoia AI SOC platform

“Sekoia’s platform, with its strong emphasis on AI-driven automation and SOAR, is our competitive edge. It allows us not only to significantly boost our SOC’s responsiveness but, critically, to maintain high-performance, yet budget-friendly, cybersecurity offerings for our SMB clients across the US. The dedicated US cloud region provides the essential compliance guarantee we need in this market.”
US-based MSSP partner
Director of Security Operations

Context and challenges

The MSSP's services are built around defense in depth, including 24/7 detection and response delivered through its own proprietary platform. Their offering is designed to be budget-friendly, providing enterprise-grade security without enterprise pricing.

To successfully serve a large volume of small-to-medium-sized organizations (SMBs and SMEs) with an affordable offering, the partner faced two critical challenges:

  1. Scaling and cost-efficiency: They needed to maximize operational efficiency and automation (SOAR/AI) to keep service costs competitive and minimize manual work.
  2. US Market Requirements: It was crucial to secure a platform that guaranteed data residency on a dedicated US cloud region. The Sekoia USA1 region hosted with OVH ensures fast detection & response and adheres to strict regulatory requirements, such as those governed by the Federal Information Security Management Act (FISMA).

Why Sekoia?

The partnership between Sekoia and this MSSP was established in Q2 2025. Sekoia's AI SOC platform was selected as the core engine for its deep automation capabilities and its strategic alignment with US market needs.

Automation as a core value proposition

The MSSP heavily leverages Sekoia’s SOAR (Security Orchestration, Automation, and Response) features to manage a high volume of small organizations effectively. Crucially, the platform supports the MSSP’s specific operational model, which balances automation with critical human oversight.

A critical differentiator was Sekoia’s commitment to an open architecture, providing robust API capabilities that allowed the MSSP to seamlessly interconnect their proprietary services and tools directly into the Sekoia SOC platform for unified management.

  • Optimized triage and investigation flow: The MSSP utilizes Playbooks integrated into the platform for the initial alert triage. To maintain quality control and detailed oversight required for customer reporting, the team manages Cases in manual mode. Sekoia serves as the centralized investigation base and utilizes the Agentic SOC's task management module to streamline human-in-the-loop workflows, automating routine steps while preserving oversight and reducing alert fatigue.
  • Contextual asset information: The MSSP deploys the Sekoia Agent to gather crucial information about protected machines within the platform. This serves as a vital complement to their existing EDR solution, allowing the team to quickly identify key data points for investigation, such as the accounts currently used on machines (e.g., administrator accounts).
  • Data analysis and client reporting via sol: The Sekoia Operating Language (SOL) is used by analysts not only for investigation but also for generating statistical reports for clients. SOL querying allows the MSSP to provide transparent metrics on performance, such as the number of alerts processed and events received. The platform’s robust SOL capabilities enable optimized querying, filtering, and reporting on data.
  • Predictable asset-based pricing: Sekoia offers a pricing model based on the number of protected assets rather than log volume. This transparency provides the partner with cost clarity and predictability, a key commercial advantage for offering budget-friendly solutions.

US cloud residency and compliance

To meet the partner’s needs for compliance and performance in the United States, Sekoia stores data on a dedicated US cloud region. This local hosting ensures adherence to data residency requirements for sensitive sectors and facilitates fast threat detection and response. The need for rapid threat detection is paramount, especially considering stringent US regulations like FISMA.

Benefits

The partnership, established in Q2 2025, has enabled both companies to accelerate their development, particularly highlighting Sekoia's growth in the US market.

  • Rapid US market expansion: In the few months since the partnership began, the MSSP is already protecting over 100 end customers across the US leveraging the Sekoia SOC platform.
  • Affordable enterprise protection: The enhanced automation from the AI SOC platform, including SOAR and Agentic SOC features, allows the MSSP to achieve greater operational efficiency, saving analyst time and enabling them to deliver high-quality, comprehensive cybersecurity at a competitive, predictable price point.
  • Guaranteed data residency and performance: Utilizing Sekoia's dedicated US cloud region ensures that data residency constraints are strictly adhered to, reinforcing customer trust in sectors like healthcare and finance, while guaranteeing low-latency D&R (Detection & Response).

Use cases

The MSSP relies on the Sekoia SOC platform for continuous monitoring, alert management, and automated incident response. The automated capabilities address key SOC use cases, such as isolating endpoints or executing AV scans in response to incidents.

The MSSP protects a wide array of end customers across the United States, in industries such as Healthcare, Professional Services, and Manufacturing:

  • A healthcare facility in Michigan
  • A construction firm in Texas
  • A manufacturing plant in Minnesota
  • A global charity providing social aid

In summary

This partnership showcases Sekoia’s commitment to driving high-performance, automated cybersecurity on a global scale.

By providing a platform that emphasizes maximum automation (SOAR, AI-SOC) and guarantees performance and compliance via a dedicated US cloud region, Sekoia enables this MSSP to scale rapidly and defend over 100 US organizations efficiently against modern threats.

  • Automation/ Efficiency: 5/5
  • Ease of integration: 5/5
  • Cost predictability: 5/5

Think of the Sekoia SOC platform as an expertly automated factory floor.

By providing the MSSP with the tools for extreme efficiency (SOAR, Agentic SOC), we allow them to produce a high volume of top-quality security protection (for 100+ clients) at a cost that is accessible to smaller organizations, all while adhering to the strict logistical requirements (US data residency) of the American market.

FAQ

Can MSSPs use Sekoia with their customers’ existing security tools?

Yes, you can. Sekoia uses an open and extensible architecture to avoid vendor lock-in. It comes with over 300 integrations.

With Sekoia Reveal, you ingest data from existing tools like EDRs, CMDBs, IAM platforms, and vulnerability scanners. On the output side, Sekoia Intelligence feeds high-confidence threat data directly into your customers' SIEMs, SOARs, firewalls, or TIPs via native APIs and TAXII endpoints.

How can Sekoia help MSSPs scale their managed security services?

Scaling a traditional SOC is expensive because alert volumes grow much faster than human capacity. Hiring more analysts to clear backlogs just burns out your team and eats your margins.

Sekoia fixes this by deploying specialized AI agents that automate alert triage and investigations end-to-end. The AI handles the hours of repetitive research and documentation. Your current team can then focus entirely on making critical decisions and managing threat responses. You scale your customer base without a matching spike in headcount.

What is a Managed Security Service Provider (MSSP)?

An MSSP is a third-party company that monitors and manages an organization's digital security. Today, many are evolving into Managed Detection and Response (MDR) providers to offer deeper threat hunting and faster incident containment.

What kind of support do MSSP/ MDR partners receive?

We offer an established partner platform packed with technical resources, co-branded materials, and go-to-market tools to help you scale. Read about our partner program to learn more.

How does Sekoia support multi-tenant MSSP security operations?

The platform has built-in features to manage multiple communities from a single view. Through Sekoia Elevate, you can tailor the AI agent's context and memory for each specific sub-tenant. This lets the platform handle every customer’s unique environment and edge cases perfectly.

Related case studies

A shared vision for 360° safety and increased maturity

read story

CTI - What are the measurable key figures ?

read story

US MSSP leverages Sekoia automation to deliver affordable, enterprise-grade cybersecurity

read story

How does Monaco Cyber Sécurité ensure data residency compliance with Sekoia?

read story