Blackpoint Cyber vs r-tec IT Security
Blackpoint Cyber is a MSP-channel that requires its own security platform. r-tec IT Security is a Services firm that works with your existing tools. Blackpoint Cyber targets SMB and Mid-market organizations; r-tec IT Security serves Mid-market and Enterprise. Blackpoint Cyber includes 2 attack surfaces in base pricing (Endpoint, Network), compared to 0 for r-tec IT Security ().
Buyer brief
Blackpoint Cyber is a MSP-channel that requires its own security platform. r-tec IT Security is a Services firm that works with your existing tools. Blackpoint Cyber targets SMB and Mid-market organizations; r-tec IT Security serves Mid-market and Enterprise. Blackpoint Cyber includes 2 attack surfaces in base pricing (Endpoint, Network), compared to 0 for r-tec IT Security ().
Blackpoint Cyber is the choice if you want a single-vendor stack with deep integration. r-tec IT Security is better if you have existing tools and want flexibility.
At a glance
| FIELD |  |  |
|---|---|---|
| Best fit | MSPs seeking a purpose-built MDR platform with autonomous SOC response for their SMB clients | German mid-market and enterprise buyers that want MDR from a services firm with incident-response depth |
| Price | $8-15/endpoint/mo | Custom quote |
| Response authority | 4/6 actions · No approval | 1/6 actions · Configurable |
| Stack | Requires own platform | Works with existing stack |
| Data access | Dashboards | Dashboards |
| Warranty | None listed | None listed |
- Best fit
- MSPs seeking a purpose-built MDR platform with autonomous SOC response for their SMB clients
- Price
- $8-15/endpoint/mo
- Response authority
- 4/6 actions · No approval
- Stack
- Requires own platform
- Data access
- Dashboards
- Warranty
- None listed
- Best fit
- German mid-market and enterprise buyers that want MDR from a services firm with incident-response depth
- Price
- Custom quote
- Response authority
- 1/6 actions · Configurable
- Stack
- Works with existing stack
- Data access
- Dashboards
- Warranty
- None listed
Detailed comparison
| FIELD | Blackpoint CyberPLATFORM | r-tec IT SecurityTECH-AGNOSTIC |
|---|---|---|
| Fit | ||
| Target size | SMB, Mid-market | Mid-market, Enterprise |
| Sentiment | Positive | Mixed |
| Your stack | ||
| Approach | Requires their platform | Works with your tools |
| EDR integrations | Blackpoint EDR AgentSentinelOneMicrosoft DefenderBitdefenderSophosCylanceWebrootMalwarebytes/ThreatDown CrowdStrike | Microsoft Defender XDR CrowdStrike |
| SIEM integrations | LogIC (native logging/compliance) | ExabeamMicrosoft Sentinel |
| Coverage | EPEndpoint: CoveredCloudCloud: Optional add-onIDIdentity: Optional add-onSaaSSaaS: Optional add-onNetNetwork: CoveredOTOT/IoT: Not covered | EPEndpoint: LimitedCloudCloud: Not coveredIDIdentity: LimitedSaaSSaaS: Not coveredNetNetwork: LimitedOTOT/IoT: Optional add-on |
| Response | ||
| Response type | Active Remediation | Active Remediation |
| Approval policy | Fully Autonomous | Configurable |
| Response actions | IsolateKill processContainDisable accounts | Custom playbooks |
| IR included | ✓ Included | ✓ Included |
| Cost | ||
| Price range | Third-party/partner-reported $8-15/endpoint/month. Volume discounts for 50+ endpoints with 1-year commitment. | Not published |
| Minimum seats | None | None |
| Breach warranty | – | – |
| More details | ||
| Requires own agent | Yes | No |
| Endpoints | ✓ Included | ~ Limited |
| Cloud workloads | + Optional | Not offered |
| Identity | + Optional | ~ Limited |
| SaaS apps | + Optional | Not offered |
| Network | ✓ Included | ~ Limited |
| OT/ICS | Not offered | + Optional |
| Threat hunting | ✓ Included | ✓ Included |
| Response SLA | Not disclosed | ≤1 hour |
| 24/7 coverage | ✓ | ✓ |
| Pricing model | Per-endpoint, monthly billing (MSP channel model) | Tiered custom quote. r-tec publishes Basic and Premium MDR tiers but does not publish prices. |
| Hidden cost warnings | Pricing not publicly listed, requires custom quote through MSP. All payments non-cancellable and non-refundable per reseller agreement. Volume pricing (50+ endpoints) requires 1-year commitment. LogIC logging/compliance and Cloud MDR are separate purchases. Cannot buy direct. Must go through an MSP partner.. CompassOne Standard vs Essentials tier split means some features cost extra | Premium is required for 24x7 service times and the 1-hour qualification and First Response target.. Basic still has 24x7 automated detection and alerting, but human service hours are Monday-Friday, 8:00-18:00.. Public pages do not publish prices or contract minimums.. Optional direct response should be converted into a written pre-approval matrix.. Endpoint telemetry may depend on contracted CrowdStrike, Microsoft Defender XDR or Managed EDR scope.. OT MDR and Managed EDR are separate named services, so buyers should confirm whether they are included or quoted separately. |
| Data portability | Limited | Partial |
| Contract terms | Month-to-month, Annual (required for volume 50+ endpoints) | Basic, Premium, Custom |
| Channels | EmailPortalPhone | EmailPhone |
| Data access | Dashboards | Dashboards |
| Dedicated analyst | ✓ | – |
| SOC regions | North America | Europe |
| Onboarding | Minutes per Blackpoint marketing. User reviews confirm quick, straightforward setup. | r-tec says site collectors support simple and fast implementation, but no standard public onboarding duration was found. |
| Industry focus | Managed Service ProvidersHealthcareFinancial ServicesRetailGovernment | Critical InfrastructureEnergyManufacturingOperational TechnologyHealthcareFinancial ServicesPublic SectorLogisticsAutomotiveChemicalsPharmaceuticals |
| MTTD | Not published | Not published |
| MTTR | Average 16 minutes for on-premises incidents, 7 minutes for cloud incidents. Overall ~27 minutes including partner phone call after threat elimination. | Not published |
| Community view | G2 4.7/5 (257 reviews) and Grid Leader with 23 badges (Spring 2025). PeerSpot 9.0/10. MSPs praise the autonomous response model, easy deployment and channel-first approach. Recurring complaints about portal usability, limited SOC transparency and no Linux support. Glassdoor 3.6/5 flags analyst burnout concerns. | r-tec has limited MDR-specific public review volume. The public buyer case rests on German delivery, a published IT MDR service, a separate OT MDR service, BSI APT-response status and clear Basic versus Premium service-level targets. Buyers should validate exact response authority, pricing, OT scope and the operating model behind Premium 24x7 service. |
| Compliance | SOC 2 Type IIGDPRPCI DSSHIPAA/HITECH | ISO 27001ISO 9001KRITISGDPR |
| Certifications | SOC 2 Type II | ISO 27001ISO 9001BSI-certified APT Response service providerEcoVadis Bronze group certification |
| Founded | 2014 | 1996 |
| Data retention | 365 days encrypted log storage via LogIC (AES-256, read-only, 3 zones). Extended retention available. | Not published as a standard MDR retention period. r-tec says Exabeam is operated as a cloud service from a German GDPR-compliant data center. |
| API available | ✓ | – |
| Website | Visit → | Visit → |
FAQ
What is the main difference between Blackpoint Cyber and r-tec IT Security?
Blackpoint Cyber is a MSP-channel that is platform-native (requires their own security stack). r-tec IT Security is a Services firm that is technology-agnostic (works with your existing tools). SLA commitments differ: Blackpoint Cyber offers Not disclosed, r-tec IT Security offers ≤1 hour. Blackpoint Cyber covers 2 attack surfaces in base pricing vs. 0 for r-tec IT Security.
How do Blackpoint Cyber and r-tec IT Security differ in response capabilities?
Blackpoint Cyber supports 4 autonomous actions (account disable, endpoint isolation, network containment, process termination) and acts without approval. r-tec IT Security supports 1 autonomous actions (custom playbooks) and approval is configurable.
How does Blackpoint Cyber pricing compare to r-tec IT Security?
Blackpoint Cyber pricing: Third-party/partner-reported $8-15/endpoint/month. Volume discounts for 50+ endpoints with 1-year commitment.. r-tec IT Security pricing: Not published. Watch for with Blackpoint Cyber: Pricing not publicly listed, requires custom quote through MSP; All payments non-cancellable and non-refundable per reseller agreement. Watch for with r-tec IT Security: Premium is required for 24x7 service times and the 1-hour qualification and First Response target.; Basic still has 24x7 automated detection and alerting, but human service hours are Monday-Friday, 8:00-18:00..
Should I choose Blackpoint Cyber or r-tec IT Security?
Choose Blackpoint Cyber if: mSPs seeking a purpose-built MDR platform with autonomous SOC response for their SMB clients. Choose r-tec IT Security if: german mid-market and enterprise buyers that want MDR from a services firm with incident-response depth. Blackpoint Cyber is not ideal for enterprises buying MDR directly, not through an MSP channel. Blackpoint does not sell direct.. r-tec IT Security is not ideal for buyers that need public price cards or contract minimums before sales engagement.
Daylight Security
AI-native MDR for buyers comparing active remediation across endpoint, cloud, identity, and SaaS. Daylight works with existing EDR/SIEM stacks and uses ChatOps-native collaboration, so it can be a useful third reference point in this comparison.