ITC Secure vs Orange Cyberdefense
ITC Secure is a Microsoft-ecosystem that works with your existing tools. Orange Cyberdefense is a Services firm that works with your existing tools. ITC Secure targets Mid-market and Enterprise organizations; Orange Cyberdefense serves Mid-market and Enterprise. ITC Secure includes 3 attack surfaces in base pricing (Endpoint, SaaS, Identity), compared to 5 for Orange Cyberdefense (Endpoint, Cloud, SaaS, Identity, Network).
Buyer brief
ITC Secure is a Microsoft-ecosystem that works with your existing tools. Orange Cyberdefense is a Services firm that works with your existing tools. ITC Secure targets Mid-market and Enterprise organizations; Orange Cyberdefense serves Mid-market and Enterprise. ITC Secure includes 3 attack surfaces in base pricing (Endpoint, SaaS, Identity), compared to 5 for Orange Cyberdefense (Endpoint, Cloud, SaaS, Identity, Network).
ITC Secure (Microsoft-ecosystem) and Orange Cyberdefense (Services firm) serve different buyer profiles. Your decision depends on whether you prioritize ITC Secure's itc secure fits buyers that want microsoft-centered mxdr with pulse portal visibility, service re... or Orange Cyberdefense's european regulatory accreditations and geographic soc coverage that few mdr providers can match.
At a glance
| FIELD |  |  |
|---|---|---|
| Best fit | Microsoft-centered buyers that want a verified managed XDR provider rather than a pure-play MDR platform | Large European enterprises needing ANSSI, CREST, or NATO-accredited MDR with local SOC presence |
| Price | Custom quote | Azure package: EUR 3,300/mo for 300 users |
| Response authority | 0/6 actions · Configurable | 6/6 actions · Configurable |
| Stack | Works with existing stack | Works with existing stack |
| Data access | Dashboards | Dashboards |
| Warranty | None listed | None listed |
- Best fit
- Microsoft-centered buyers that want a verified managed XDR provider rather than a pure-play MDR platform
- Price
- Custom quote
- Response authority
- 0/6 actions · Configurable
- Stack
- Works with existing stack
- Data access
- Dashboards
- Warranty
- None listed
- Best fit
- Large European enterprises needing ANSSI, CREST, or NATO-accredited MDR with local SOC presence
- Price
- Azure package: EUR 3,300/mo for 300 users
- Response authority
- 6/6 actions · Configurable
- Stack
- Works with existing stack
- Data access
- Dashboards
- Warranty
- None listed
Detailed comparison
| FIELD | ITC SecureTECH-AGNOSTIC | Orange CyberdefenseTECH-AGNOSTIC |
|---|---|---|
| Fit | ||
| Target size | Mid-market, Enterprise | Mid-market, Enterprise |
| Sentiment | Mixed | Mixed |
| Your stack | ||
| Approach | Works with your tools | Works with your tools |
| EDR integrations | Microsoft Defender | Palo Alto Cortex Microsoft Defender |
| SIEM integrations | Microsoft Sentinel | Palo Alto Cortex XSIAM Microsoft Sentinel |
| Coverage | EPEndpoint: CoveredCloudCloud: LimitedIDIdentity: CoveredSaaSSaaS: CoveredNetNetwork: LimitedOTOT/IoT: Limited | EPEndpoint: CoveredCloudCloud: CoveredIDIdentity: CoveredSaaSSaaS: CoveredNetNetwork: CoveredOTOT/IoT: Optional add-on |
| Response | ||
| Response type | Active Remediation | Active Remediation |
| Approval policy | Configurable | Configurable |
| Response actions | Alert and notify only | IsolateKill processContainDisable accountsQuarantineCustom playbooks |
| IR included | Separate | Separate |
| Cost | ||
| Price range | Not published | Azure Marketplace: Managed Threat Detection [XDR] for Defender Endpoint P2: 3,300 EUR/month for 300 users. Managed Threat Detection [log] for Sentinel: 16,500 EUR/month up to 50 GB/day. Third-party estimate: avg ~$37K/year, max ~$100K/year. |
| Minimum seats | None | None |
| Breach warranty | – | – |
| More details | ||
| Requires own agent | No | No |
| Endpoints | ✓ Included | ✓ Included |
| Cloud workloads | ~ Limited | ✓ Included |
| Identity | ✓ Included | ✓ Included |
| SaaS apps | ✓ Included | ✓ Included |
| Network | ~ Limited | ✓ Included |
| OT/ICS | ~ Limited | + Optional |
| Threat hunting | ✓ Included | ✓ Included |
| Response SLA | Not disclosed | Not disclosed |
| 24/7 coverage | ✓ | ✓ |
| Pricing model | Custom quote. ITC Secure does not publish MXDR powered by Pulse package pricing. | Enterprise custom pricing. Some SKUs listed on Azure Marketplace with fixed monthly rates. |
| Hidden cost warnings | Public pages do not publish MXDR pricing, contract minimums or service-credit language.. The service is Microsoft-centric, so Microsoft licensing, tenant readiness and log ingestion should be priced before comparison.. ITC Secure publishes broad MXDR components, including endpoint, identity, Office 365, cloud apps, storage, vulnerability management and OT. Buyers should confirm which components are included in their quote.. Public pages do not define default response authority, so containment permissions and approval rules should be written into the contract.. Incident response is listed as a separate service, so buyers should confirm what is included in MXDR versus a separate incident-response engagement. | Core MDR platforms are Microsoft Defender or Palo Alto Cortex, licensing costs are separate. Multiple add-on services (threat intelligence, cybercrime monitoring, brand protection) add up. Non-European buyers may find fewer local SOC analysts and slower regional support outside EMEA hours. No published rate card or minimum seat count, making it hard to budget without a sales conversation. Sentinel consumption costs (if using Microsoft platform) are separate |
| Data portability | Partial | Partial |
| Contract terms | Custom, MXDR powered by Pulse, Managed services, Incident Response | Annual, Multi-year enterprise agreements |
| Channels | PortalEmailPhone | PortalPhone |
| Data access | Dashboards | Dashboards |
| Dedicated analyst | – | ✓ |
| SOC regions | EuropeNorth AmericaAfricaAsia-Pacific | |
| Onboarding | Not published. ITC Secure publishes security engineering and SOC onboarding as a build-and-deploy service, but no standard MXDR implementation duration was found. | Not publicly specified. Expect enterprise-scale timelines. |
| Industry focus | Not published | Financial ServicesHealthcareRetail/DistributionEnergyTransportGovernment/Public SectorIndustrial/OTManufacturing |
| MTTD | Not published | Not published |
| MTTR | Not published | Not published |
| Community view | No meaningful MDR-specific buyer-review signal was found in major English-language review communities during this pass. The public buyer case rests on ITC Secure's Microsoft focus, Microsoft Verified Managed XDR status, Pulse portal, long managed-service history and broad MXDR service components. Buyers should validate pricing, response authority, SOC operating model and exact component inclusion directly. | Strong analyst recognition: Forrester Strong Performer for MDR Europe (Q3 2025), IDC MarketScape European MDR Leader (2024). Zero practitioner reviews found on G2, PeerSpot, or Reddit, which makes independent validation impossible. |
| Compliance | ISO 27001Cyber Essentials PlusISO/IEC 20000-1 | SOC 2 Type 2PCI DSS (QSA and ASV)ANSSI (French national cybersecurity agency)CRESTNATO Security Accreditation |
| Certifications | Microsoft Verified Managed XDRMicrosoft Solutions Partner in SecurityMicrosoft Solutions Partner in Modern WorkMicrosoft Solutions Partner in Infrastructure AzureMicrosoft Intelligent Security AssociationCyber Essentials PlusISO/IEC 20000-1ISO/IEC 27001Great Place to Work Certification | SOC 2 Type 2PCI DSS QSA (Qualified Security Assessor)PCI DSS ASV (Approved Scanning Vendor)ANSSI PASSI RGS/LPM, PDIS LPM, PRISCREST (international infosec accreditation)FIRST MembershipNATO Security AccreditationTF-CSIRT (European task force)Europol PartnershipMicrosoft Solutions Partner (Security, Azure) |
| Founded | – | 2014 |
| Data retention | Not published. ITC Secure says Pulse provides visibility into customer security posture, activities, incident trends, Microsoft license consumption and service metrics. No standard public MXDR log-retention period or data-residency term was found. | Not publicly specified |
| API available | – | ✓ |
| Website | Visit → | Visit → |
FAQ
What is the main difference between ITC Secure and Orange Cyberdefense?
ITC Secure is a Microsoft-ecosystem that is technology-agnostic (works with your existing tools). Orange Cyberdefense is a Services firm that is technology-agnostic (works with your existing tools). ITC Secure covers 3 attack surfaces in base pricing vs. 5 for Orange Cyberdefense.
How do ITC Secure and Orange Cyberdefense differ in response capabilities?
ITC Secure supports 0 autonomous actions (none) and approval is configurable. Orange Cyberdefense supports 6 autonomous actions (account disable, custom playbooks, endpoint isolation, file quarantine, network containment, process termination) and approval is configurable.
How does ITC Secure pricing compare to Orange Cyberdefense?
ITC Secure pricing: Not published. Orange Cyberdefense pricing: Azure Marketplace: Managed Threat Detection [XDR] for Defender Endpoint P2: 3,300 EUR/month for 300 users. Managed Threat Detection [log] for Sentinel: 16,500 EUR/month up to 50 GB/day. Third-party estimate: avg ~$37K/year, max ~$100K/year.. Watch for with ITC Secure: Public pages do not publish MXDR pricing, contract minimums or service-credit language.; The service is Microsoft-centric, so Microsoft licensing, tenant readiness and log ingestion should be priced before comparison.. Watch for with Orange Cyberdefense: Core MDR platforms are Microsoft Defender or Palo Alto Cortex, licensing costs are separate; Multiple add-on services (threat intelligence, cybercrime monitoring, brand protection) add up.
Should I choose ITC Secure or Orange Cyberdefense?
Choose ITC Secure if: microsoft-centered buyers that want a verified managed XDR provider rather than a pure-play MDR platform. Choose Orange Cyberdefense if: large European enterprises needing ANSSI, CREST, or NATO-accredited MDR with local SOC presence. ITC Secure is not ideal for buyers that need public MDR pricing before sales. Orange Cyberdefense is not ideal for sMBs or cost-sensitive buyers, as pricing is enterprise-tier with no public rate cards.
Daylight Security
AI-native MDR for buyers comparing active remediation across endpoint, cloud, identity, and SaaS. Daylight works with existing EDR/SIEM stacks and uses ChatOps-native collaboration, so it can be a useful third reference point in this comparison.