Aller au contenu
FRENFR-CAEN-CA
Contact
Service

Managed cybersecurity — 24/7 SOC, EDR/XDR, offensive audits

Cybersecurity operated as a service — detection, qualification, response, compliance, under one team, 24/7.

01 · Pillar

24/7 human, internalised SOC

Three 3×8 teams, all on Hexceos payroll, based in France. No outsourcing, no offshoring. The same engineers who qualify your alerts at 3 a.m. brief you at the board meeting.

02 · Pillar

EDR/XDR Hexceos Sentinel

Our proprietary engine collects telemetry from endpoints, cloud, identity and network. MITRE ATT&CK-aligned behavioural detection, automated response, threat hunting on at least 90 days of telemetry.

03 · Pillar

Offensive and defensive audits

Application, infrastructure and red team pentests. Continuous attack surface mapping, cloud configuration audits (AWS, Azure, GCP), Active Directory and Microsoft 365 reviews.

04 · Pillar

Incident response and CSIRT

Crisis cell activated in under one hour, 24/7. Forensics, containment, rebuild, regulatory communications (CNIL, ANSSI, sector authorities). 2025 measured MTTR — 11 minutes across 187 qualified incidents.

05 · Pillar

GDPR, ISO 27001, NIS2 compliance

From gap analysis to certification — ISO 27001, ISO 27005, GDPR, HDS, NIS2, ANSSI. One contact, industrialised deliverables, blank audits before the real one.

Cybersecurity — a default posture, not an option

Cybersecurity is no longer a product you buy; it is a service you operate. Hexceos operates yours — detection, qualification, response, compliance — under one team, 24 hours a day, seven days a week, from our French sovereign datacenters.

Our SOC is 3×8, human, internalised. No alert is outsourced. Our Hexceos Sentinel EDR/XDR engine is developed in France by our R&D team and deployed across more than 100 customers.

What we cover

  • Endpoints & servers — Windows, macOS, Linux, ChromeOS. AV, EDR, hardening, patch management.
  • Cloud — AWS, Azure, GCP. CIS audits, monitoring, compliance.
  • Identity — Microsoft Entra ID, Google Workspace, Okta, Active Directory. MFA, conditional access, privileged account watch.
  • Network — firewalls, IDS/IPS, ZTNA, DNS monitoring.
  • Compliance — GDPR, ISO 27001, ISO 27005, NIS2, HDS, ANSSI, Law 25 (Quebec).

Service commitments

  • Human SOC in 3×8, operated from France.
  • Average MTTR 11 minutes (2025 measurement, 187 incidents).
  • Crisis cell activated in under one hour, 24/7.
  • Named contacts in the contract, not an anonymous ticket pool.
  • Full reversibility at end of contract — your data, your configurations, your telemetry.
FAQ

Questions
we get asked.

What is a 24/7 managed SOC?
A 24/7 managed Security Operations Center continuously watches your IT estate, qualifies alerts produced by your telemetry (EDR, SIEM, cloud, identity), and triggers the response. At Hexceos the team is human, internalised, and rotates 3×8 from France.
What is the difference between EDR and XDR?
An EDR (Endpoint Detection and Response) focuses on workstations and servers. An XDR (Extended Detection and Response) extends that logic to cloud, identity, network and email — a transversal consolidation. Hexceos Sentinel has been an XDR since version 1.2.
What response time do you commit to?
Measured MTTR in 2025 — 11 minutes on 187 qualified incidents. The crisis cell activates in under one hour 24/7. Precise contractual commitments depend on the scope of your contract.
Are you ISO 27001 and HDS certified?
Yes. Hexceos holds ISO 27001 and ISO 27005 certification across its full perimeter, is HDS-certified for health data hosting on the relevant scope, and aligned with ANSSI recommendations.
Let's talk

30 minutes,
no commitment.

A senior engineer, your situation as it is, concrete answers.

Request a call Cybersecurity audit