HEAD-TO-HEAD2 PROVIDERS · SAME SCHEMA · INDEPENDENT

ITC Secure vs Secureworks

ITC Secure is a Microsoft-ecosystem that works with your existing tools. Secureworks is a Services firm that works with your existing tools. ITC Secure targets Mid-market and Enterprise organizations; Secureworks serves Mid-market and Enterprise. ITC Secure includes 3 attack surfaces in base pricing (Endpoint, SaaS, Identity), compared to 4 for Secureworks (Endpoint, Cloud, Identity, Network).

Buyer brief

Fit

Response model

ITC Secure (Microsoft-ecosystem) and Secureworks (Services firm) serve different buyer profiles. Your decision depends on whether you prioritize ITC Secure's itc secure fits buyers that want microsoft-centered mxdr with pulse portal visibility, service re... or Secureworks's open xdr mdr with broad integration, ctu threat intelligence (now sophos x-ops), strong mitre res....

At a glance

FIELD	ITC Secure	Secureworks
Best fit	Microsoft-centered buyers that want a verified managed XDR provider rather than a pure-play MDR platform	Enterprise organizations wanting open XDR with existing CrowdStrike, Defender, SentinelOne, or Carbon Black EDR
Price	Custom quote	Buyer benchmark: median $91,350/yr
Response authority	0/6 actions · Configurable	4/6 actions · Configurable
Stack	Works with existing stack	Works with existing stack
Data access	Dashboards	Full query access
Warranty	None listed	None listed

ITC Secure

Best fit: Microsoft-centered buyers that want a verified managed XDR provider rather than a pure-play MDR platform
Price: Custom quote
Response authority: 0/6 actions · Configurable
Stack: Works with existing stack
Data access: Dashboards
Warranty: None listed

Secureworks

Best fit: Enterprise organizations wanting open XDR with existing CrowdStrike, Defender, SentinelOne, or Carbon Black EDR
Price: Buyer benchmark: median $91,350/yr
Response authority: 4/6 actions · Configurable
Stack: Works with existing stack
Data access: Full query access
Warranty: None listed

Detailed comparison

FIELD	ITC SecureTECH-AGNOSTIC	SecureworksTECH-AGNOSTIC
Fit
Target size	Mid-market, Enterprise	Mid-market, Enterprise
Sentiment	Mixed	Mixed
Your stack
Approach	Works with your tools	Works with your tools
EDR integrations	Microsoft Defender	CrowdStrike Falcon InsightMicrosoft Defender for EndpointSentinelOneVMware Carbon Black (Cloud & Enterprise)Sophos EndpointTaegis Endpoint Agent (native)
SIEM integrations	Microsoft Sentinel	Taegis XDR (native Next-Gen SIEM)
Coverage	EPEndpoint: CoveredCloudCloud: LimitedIDIdentity: CoveredSaaSSaaS: CoveredNetNetwork: LimitedOTOT/IoT: Limited	EPEndpoint: CoveredCloudCloud: CoveredIDIdentity: CoveredSaaSSaaS: Optional add-onNetNetwork: CoveredOTOT/IoT: Optional add-on
Response
Response type	Active Remediation	Active Remediation
Approval policy	Configurable	Configurable
Response actions	Alert and notify only	IsolateContainDisable accountsCustom playbooks
IR included	Separate	✓ Included
Cost
Price range	Not published	Third-party buyer data reports a $91,350/year median buyer cost for Secureworks, with a visible public range from $15,200 to $421,751/year. PeerSpot reviews also report MDR/MXDR annual deals around $60K-$320K+ depending on environment.
Minimum seats	None	None
Breach warranty	–	–
More details
Requires own agent	No	No
Endpoints	✓ Included	✓ Included
Cloud workloads	~ Limited	✓ Included
Identity	✓ Included	✓ Included
SaaS apps	✓ Included	+ Optional
Network	~ Limited	✓ Included
OT/ICS	~ Limited	+ Optional
Threat hunting	✓ Included	✓ Included
Response SLA	Not disclosed	≤1 hour
24/7 coverage	✓	✓
Pricing model	Custom quote. ITC Secure does not publish MXDR powered by Pulse package pricing.	Per-endpoint pricing, custom/quote-based. Three tiers: MDR, MDR Plus, MDR Enhanced.
Hidden cost warnings	Public pages do not publish MXDR pricing, contract minimums or service-credit language.. The service is Microsoft-centric, so Microsoft licensing, tenant readiness and log ingestion should be priced before comparison.. ITC Secure publishes broad MXDR components, including endpoint, identity, Office 365, cloud apps, storage, vulnerability management and OT. Buyers should confirm which components are included in their quote.. Public pages do not define default response authority, so containment permissions and approval rules should be written into the contract.. Incident response is listed as a separate service, so buyers should confirm what is included in MXDR versus a separate incident-response engagement.	Sophos acquisition completed Feb 2025, Taegis integration into Sophos Central underway with long-term platform consolidation likely. ~6% workforce reduction (~380 roles) in Feb 2025 post-acquisition, verify analyst continuity. Per-endpoint pricing varies widely ($70-$170/endpoint reported), negotiate hard
Data portability	Partial	Partial
Contract terms	Custom, MXDR powered by Pulse, Managed services, Incident Response	Annual, Multi-year
Channels	PortalEmailPhone	PortalEmailPhone
Data access	Dashboards	Full query access
Dedicated analyst	–	✓
SOC regions		North AmericaEuropeAsia-Pacific
Onboarding	Not published. ITC Secure publishes security engineering and SOC onboarding as a build-and-deploy service, but no standard MXDR implementation duration was found.	30-45 days typical
Industry focus	Not published	Financial ServicesGovernmentHealthcareManufacturing / OTEducationRetailTechnology
MTTD	Not published	Not formally published.
MTTR	Not published	Not formally published. 60-minute investigation SLA from case initiation to customer notification (service-level credits apply).
Community view	No meaningful MDR-specific buyer-review signal was found in major English-language review communities during this pass. The public buyer case rests on ITC Secure's Microsoft focus, Microsoft Verified Managed XDR status, Pulse portal, long managed-service history and broad MXDR service components. Buyers should validate pricing, response authority, SOC operating model and exact component inclusion directly.	G2 4.6/5 (48 reviews). PeerSpot 7.8/10 (#2 MSSP, #15 MDR). Glassdoor 3.5/5 with 64% recommending. Taegis achieved 100% visibility and 95% detection in MITRE evaluation. Product quality respected, but organizational stability is the concern after Sophos acquisition and significant headcount losses.
Compliance	ISO 27001Cyber Essentials PlusISO/IEC 20000-1	ISO 27001SOC 2 Type IIFFIEC Examined (Technology Service Provider)FIPS 140-3HIPAA/HITRUSTPCI DSSGDPR
Certifications	Microsoft Verified Managed XDRMicrosoft Solutions Partner in SecurityMicrosoft Solutions Partner in Modern WorkMicrosoft Solutions Partner in Infrastructure AzureMicrosoft Intelligent Security AssociationCyber Essentials PlusISO/IEC 20000-1ISO/IEC 27001Great Place to Work Certification	ISO 27001 (ISMS for Taegis infrastructure, Schellman-certified)SOC 2 Type II (security, availability, confidentiality)FFIEC Examined as Technology Service Provider (annually)FIPS 140-3 encryption complianceCOBIT alignmentNIST SP800-53 alignment
Founded	–	1998
Data retention	Not published. ITC Secure says Pulse provides visibility into customer security posture, activities, incident trends, Microsoft license consumption and service metrics. No standard public MXDR log-retention period or data-residency term was found.	12 months standard included. Extendable up to 48 additional months for a fee.
API available	–	✓
Website	Visit →	Visit →

FAQ

What is the main difference between ITC Secure and Secureworks?

ITC Secure is a Microsoft-ecosystem that is technology-agnostic (works with your existing tools). Secureworks is a Services firm that is technology-agnostic (works with your existing tools). SLA commitments differ: ITC Secure offers Not disclosed, Secureworks offers ≤1 hour. ITC Secure covers 3 attack surfaces in base pricing vs. 4 for Secureworks.

How do ITC Secure and Secureworks differ in response capabilities?

ITC Secure supports 0 autonomous actions (none) and approval is configurable. Secureworks supports 4 autonomous actions (account disable, custom playbooks, endpoint isolation, network containment) and approval is configurable. Incident response is not included with ITC Secure and included with Secureworks.

How does ITC Secure pricing compare to Secureworks?

ITC Secure pricing: Not published. Secureworks pricing: Third-party buyer data reports a $91,350/year median buyer cost for Secureworks, with a visible public range from $15,200 to $421,751/year. PeerSpot reviews also report MDR/MXDR annual deals around $60K-$320K+ depending on environment.. Watch for with ITC Secure: Public pages do not publish MXDR pricing, contract minimums or service-credit language.; The service is Microsoft-centric, so Microsoft licensing, tenant readiness and log ingestion should be priced before comparison.. Watch for with Secureworks: Sophos acquisition completed Feb 2025, Taegis integration into Sophos Central underway with long-term platform consolidation likely; ~6% workforce reduction (~380 roles) in Feb 2025 post-acquisition, verify analyst continuity.

Should I choose ITC Secure or Secureworks?

Choose ITC Secure if: microsoft-centered buyers that want a verified managed XDR provider rather than a pure-play MDR platform. Choose Secureworks if: enterprise organizations wanting open XDR with existing CrowdStrike, Defender, SentinelOne, or Carbon Black EDR. ITC Secure is not ideal for buyers that need public MDR pricing before sales. Secureworks is not ideal for buyers concerned about organizational stability after Sophos acquisition and significant headcount losses.

Related comparisons

ITC Secure vs Ackcent Cybersecurity Secureworks vs Ackcent Cybersecurity ITC Secure vs AhnLab Secureworks vs AhnLab ITC Secure vs AirMDR Secureworks vs AirMDR

ITC Secure vs Secureworks

FIELD

ITC Secure

Secureworks

Best fit

Microsoft-centered buyers that want a verified managed XDR provider rather than a pure-play MDR platform

Enterprise organizations wanting open XDR with existing CrowdStrike, Defender, SentinelOne, or Carbon Black EDR

Price

Custom quote

Buyer benchmark: median $91,350/yr

Response authority

0/6 actions · Configurable

4/6 actions · Configurable

Stack

Works with existing stack

Data access

Dashboards

Full query access

Warranty

None listed

Detailed comparison

FIELD	ITC SecureTECH-AGNOSTIC	SecureworksTECH-AGNOSTIC
Fit
Target size	Mid-market, Enterprise	Mid-market, Enterprise
Sentiment	Mixed	Mixed
Your stack
Approach	Works with your tools	Works with your tools
EDR integrations	Microsoft Defender	CrowdStrike Falcon InsightMicrosoft Defender for EndpointSentinelOneVMware Carbon Black (Cloud & Enterprise)Sophos EndpointTaegis Endpoint Agent (native)
SIEM integrations	Microsoft Sentinel	Taegis XDR (native Next-Gen SIEM)
Coverage	EPEndpoint: CoveredCloudCloud: LimitedIDIdentity: CoveredSaaSSaaS: CoveredNetNetwork: LimitedOTOT/IoT: Limited	EPEndpoint: CoveredCloudCloud: CoveredIDIdentity: CoveredSaaSSaaS: Optional add-onNetNetwork: CoveredOTOT/IoT: Optional add-on
Response
Response type	Active Remediation	Active Remediation
Approval policy	Configurable	Configurable
Response actions	Alert and notify only	IsolateContainDisable accountsCustom playbooks
IR included	Separate	✓ Included
Cost
Price range	Not published	Third-party buyer data reports a $91,350/year median buyer cost for Secureworks, with a visible public range from $15,200 to $421,751/year. PeerSpot reviews also report MDR/MXDR annual deals around $60K-$320K+ depending on environment.
Minimum seats	None	None
Breach warranty	–	–
More details
Requires own agent	No	No
Endpoints	✓ Included	✓ Included
Cloud workloads	~ Limited	✓ Included
Identity	✓ Included	✓ Included
SaaS apps	✓ Included	+ Optional
Network	~ Limited	✓ Included
OT/ICS	~ Limited	+ Optional
Threat hunting	✓ Included	✓ Included
Response SLA	Not disclosed	≤1 hour
24/7 coverage	✓	✓
Pricing model	Custom quote. ITC Secure does not publish MXDR powered by Pulse package pricing.	Per-endpoint pricing, custom/quote-based. Three tiers: MDR, MDR Plus, MDR Enhanced.
Hidden cost warnings	Public pages do not publish MXDR pricing, contract minimums or service-credit language.. The service is Microsoft-centric, so Microsoft licensing, tenant readiness and log ingestion should be priced before comparison.. ITC Secure publishes broad MXDR components, including endpoint, identity, Office 365, cloud apps, storage, vulnerability management and OT. Buyers should confirm which components are included in their quote.. Public pages do not define default response authority, so containment permissions and approval rules should be written into the contract.. Incident response is listed as a separate service, so buyers should confirm what is included in MXDR versus a separate incident-response engagement.	Sophos acquisition completed Feb 2025, Taegis integration into Sophos Central underway with long-term platform consolidation likely. ~6% workforce reduction (~380 roles) in Feb 2025 post-acquisition, verify analyst continuity. Per-endpoint pricing varies widely ($70-$170/endpoint reported), negotiate hard
Data portability	Partial	Partial
Contract terms	Custom, MXDR powered by Pulse, Managed services, Incident Response	Annual, Multi-year
Channels	PortalEmailPhone	PortalEmailPhone
Data access	Dashboards	Full query access
Dedicated analyst	–	✓
SOC regions		North AmericaEuropeAsia-Pacific
Onboarding	Not published. ITC Secure publishes security engineering and SOC onboarding as a build-and-deploy service, but no standard MXDR implementation duration was found.	30-45 days typical
Industry focus	Not published	Financial ServicesGovernmentHealthcareManufacturing / OTEducationRetailTechnology
MTTD	Not published	Not formally published.
MTTR	Not published	Not formally published. 60-minute investigation SLA from case initiation to customer notification (service-level credits apply).
Community view	No meaningful MDR-specific buyer-review signal was found in major English-language review communities during this pass. The public buyer case rests on ITC Secure's Microsoft focus, Microsoft Verified Managed XDR status, Pulse portal, long managed-service history and broad MXDR service components. Buyers should validate pricing, response authority, SOC operating model and exact component inclusion directly.	G2 4.6/5 (48 reviews). PeerSpot 7.8/10 (#2 MSSP, #15 MDR). Glassdoor 3.5/5 with 64% recommending. Taegis achieved 100% visibility and 95% detection in MITRE evaluation. Product quality respected, but organizational stability is the concern after Sophos acquisition and significant headcount losses.
Compliance	ISO 27001Cyber Essentials PlusISO/IEC 20000-1	ISO 27001SOC 2 Type IIFFIEC Examined (Technology Service Provider)FIPS 140-3HIPAA/HITRUSTPCI DSSGDPR
Certifications	Microsoft Verified Managed XDRMicrosoft Solutions Partner in SecurityMicrosoft Solutions Partner in Modern WorkMicrosoft Solutions Partner in Infrastructure AzureMicrosoft Intelligent Security AssociationCyber Essentials PlusISO/IEC 20000-1ISO/IEC 27001Great Place to Work Certification	ISO 27001 (ISMS for Taegis infrastructure, Schellman-certified)SOC 2 Type II (security, availability, confidentiality)FFIEC Examined as Technology Service Provider (annually)FIPS 140-3 encryption complianceCOBIT alignmentNIST SP800-53 alignment
Founded	–	1998
Data retention	Not published. ITC Secure says Pulse provides visibility into customer security posture, activities, incident trends, Microsoft license consumption and service metrics. No standard public MXDR log-retention period or data-residency term was found.	12 months standard included. Extendable up to 48 additional months for a fee.
API available	–	✓
Website	Visit →	Visit →

ITC Secure vs Secureworks

Buyer brief

Detailed comparison

FAQ

What is the main difference between ITC Secure and Secureworks?

How do ITC Secure and Secureworks differ in response capabilities?

How does ITC Secure pricing compare to Secureworks?

Should I choose ITC Secure or Secureworks?

Daylight Security

Related comparisons

ITC Secure vs Secureworks

Buyer brief

Detailed comparison

FAQ

What is the main difference between ITC Secure and Secureworks?

How do ITC Secure and Secureworks differ in response capabilities?

How does ITC Secure pricing compare to Secureworks?

Should I choose ITC Secure or Secureworks?

Daylight Security

Related comparisons