COSAINT Cyber
24/7 SOC monitoring and email security overlay
COSAINT cyber COSAINT (kuh-SAHNT): Protection (Irish). The name of our managed service tiers. provides 24x7 SOC monitoring and email security as a lightweight overlay on your existing M365 environment. Includes Blackpoint SOC and Ironscales – you keep your own licences, we keep you protected. Minimum 5 seats for 12 months.
EUR 35 /user/month
- Minimum 5 users
- 12-month standard agreement
- You keep your own M365 licences
Who is this for?
Best for
- Organisations with in-house IT wanting enterprise-grade security monitoring without changing their M365 setup
- Companies that already have M365 licences and want to add SOC monitoring and email protection
- Teams looking for a lightweight security overlay without full IT outsourcing
Not the best fit if
- Organisations needing M365 licences included (see COSAINT Essentials)
- Teams needing device management or end-user helpdesk (see COSAINT Managed)
Responsibilities
What we do
- Initial security configuration (MDE, MDO, Conditional Access, Ironscales, Blackpoint)
- Ongoing monitoring of Blackpoint and Ironscales alerts
- SPF/DKIM/DMARC setup and monitoring
- Security alert notifications to nominated client contacts
- Discovery and baseline gap report within 10 working days
What you do
- Maintains own M365 tenant and licences
- Investigates and remediates security incidents
- Manages own users and devices
What's included
Blackpoint Cyber MDR (24/7 SOC)
Ironscales email protection
SPF/DKIM/DMARC setup and monitoring
Security alert notifications
Discovery and baseline gap report
Included tools
These tools are deployed and managed as part of your COSAINT Cyber subscription.
Blackpoint Cyber MDR Blackpoint
Ironscales Ironscales
How it compares
See how this tier stacks up against adjacent COSAINT tiers to find your best fit.
| Feature | COSAINT Cyber EUR 35/user
| COSAINT Essentials EUR 60/user
|
|---|---|---|
| Licences & Platform | ||
| M365 licence level | — | Business Basic |
| Entra ID Conditional Access + MFA | — | P1 |
| Microsoft Intune (MDM/MAM) | — | — |
| Desktop Office apps | — | — |
| Security | ||
| Blackpoint Cyber MDR (24/7 SOC) | ||
| Ironscales email protection | ||
| SPF/DKIM/DMARC enforcement | ||
| Defender for Office 365 | — | P1 |
| Defender for Endpoint | — | — |
| Defender for Cloud Apps | — | — |
| Microsoft Sentinel | — | — |
| Defender EASM | — | — |
| 1Password Business | — | — |
| SaaS Backup (M365) | — | |
| Support & Operations | ||
| Security alert notifications | ||
| Tenant administration (GDAP) | — | |
| User lifecycle management | — | Account only |
| Product support helpdesk | — | — |
| Full end-user helpdesk | — | — |
| Centralised device build and ship | — | — |
| Quarterly Business Reviews | — | — |
| Weekly operations meetings | — | — |
| Priority escalation + enhanced SLAs | — | — |
| Dedicated contractor resource | — | — |
| Compliance & GRC | ||
| Automated security posture report | — | |
| Audit-ready evidence packs | — | — |
| Attack Simulation Training | — | — |
| Microsoft Purview (DLP, Insider Risk, eDiscovery) | — | — |
| Cyberday ISMS (ISO 27001, NIS2, GDPR) | — | — |
| NIS2 readiness assessment | — | — |
| vCISO advisory | — | — |
| GRC add-on available | — | — |
COSAINT Cyber FAQ
Do I need my own M365 licences?
Yes. COSAINT Cyber is a security overlay. It adds Blackpoint 24/7 SOC monitoring and Ironscales email protection to your existing Microsoft 365 environment. You keep your own licences and tenant. If you need M365 licences included, see COSAINT Essentials or COSAINT Managed.
What happens when the SOC detects a threat?
Our SOC analysts respond in real time, typically within minutes. They isolate compromised endpoints, contain lateral movement, and notify your nominated contacts with a full incident summary. You then investigate and remediate with your own IT resources.
Can I add more services later?
Yes. COSAINT Cyber is designed as the entry point. When your needs grow, you can upgrade to COSAINT Essentials (adds M365 Business Basic and identity management) or COSAINT Managed (adds device management and product support) at any renewal point.
What is included in the discovery and baseline gap report?
Within 10 working days of onboarding, we deliver a report covering your current security posture, MDE/MDO/Conditional Access configuration, SPF/DKIM/DMARC status, and recommended improvements. This is included at no extra cost.
Get started with COSAINT cyber COSAINT (kuh-SAHNT): Protection (Irish). The name of our managed service tiers.
Enterprise security from EUR 35 per user per month. Minimum 5 users. 12-month agreement.
Book a CallOr get in touch to talk it through first.