At a glance
- Delivery model
- Tech-agnostic (works with your tools)
- Response authority
- Alert-only
- MTTA SLA
- Not disclosed
- Coverage
- 24×7 · 0 SOC regions
- Surfaces
- Endpoint · SaaS · Identity
- IR retainer
- Separate
- Customers (public)
- 300+ organisations
- SOC analysts
- ITC Secure says it is roughly 100 people strong. Specific SOC analyst count is not published.
- Onboarding
- Not published. ITC Secure publishes security engineering and SOC onboarding as a build-and-deploy service, but no standard MXDR implementation duration was found.
Best for
Ideal for
- Microsoft-centered buyers that want a verified managed XDR provider rather than a pure-play MDR platform
- UK mid-market and enterprise teams that want Pulse portal visibility plus managed service reporting
- Organizations that want endpoint, identity, Office 365, cloud-app and vulnerability context evaluated under one MXDR service
Not ideal for
- Buyers that need public MDR pricing before sales
- Teams that require named autonomous endpoint or identity actions in public docs
- Organizations that want a pure-play MDR provider with broad published third-party EDR integrations
Coverage
Endpoint
Included
Cloud
Limited
Identity
Included
SaaS
Included
Network
Limited
OT / IoT
Limited
Compatible tools
EDR
SIEM
Cloud
Additional capabilities
Incident response
- Monitoring
- 24/7 · ITC Secure publishes 24x7 portal visibility and managed service language, but no SOC shift model, SOC location list or analyst-to-customer ratio was found
- First response
- Alert only — provider notifies your team with recommended actions
- Containment
- None documented
- Notification
- Phone · Email
- Response SLA
- Not disclosed · ITC Secure publishes MXDR powered by Pulse with threat hunting, detection, response and remediation capabilities, plus 24x7 Pulse portal visibility and incident response.
- IR included
- No — separate retainer
Detection quality
- MTTD (detect)
- Not published
- MTTR (respond)
- Not published
- False positives
- ITC Secure says its analytics focus on credible suspicious behaviour and conclusive analysis and remediation. Public pages do not publish a false-positive rate or tuning cadence.
Threat hunting
- Included
- Yes — in base service
- Approach
- proactive
- Frequency
- Public pages say MXDR includes proactive threat hunting. Exact hunt cadence not published.
Pricing
Custom quote. ITC Secure does not publish MXDR powered by Pulse package pricing.. Custom or mxdr powered by pulse or managed services or incident response contracts.
- Indicative price
- Not published
What costs extra
- -Exact MXDR pricing requires an ITC Secure quote
- -Microsoft licensing and Microsoft license consumption can affect total cost
- -Incident response may require a separate engagement with ITC's incident-response practice
- -Security assurance, advisory, SOC onboarding, identity, compliance and data-security services may be separate from MXDR
Cost caveats
- -Public pages do not publish MXDR pricing, contract minimums or service-credit language.
- -The service is Microsoft-centric, so Microsoft licensing, tenant readiness and log ingestion should be priced before comparison.
- -ITC Secure publishes broad MXDR components, including endpoint, identity, Office 365, cloud apps, storage, vulnerability management and OT. Buyers should confirm which components are included in their quote.
- -Public pages do not define default response authority, so containment permissions and approval rules should be written into the contract.
- -Incident response is listed as a separate service, so buyers should confirm what is included in MXDR versus a separate incident-response engagement.
Pricing compiled from public sources. Verify directly with the provider.
The team
- Analysts
- Direct employees · ITC Secure says it is roughly 100 people strong. Specific SOC analyst count is not published.
- Certifications
- Microsoft Security Operations AnalystGlobal Information Assurance Certification Intrusion Analysts and Incident HandlersCompTIA Cyber Security Analyst+Certified Ethical Hacker
- Channels
- Portal · Email · Phone
- Data access
- Dashboard Access
- Portal
- ITC Secure says Pulse gives 24x7 visibility into security posture, environment activity, incident trends, Microsoft license consumption and service metrics. Public pages do not show raw query access or detailed case workflow.
- Account manager
- Shared / pooled
Reputation
No meaningful MDR-specific buyer-review signal was found in major English-language review communities during this pass. The public buyer case rests on ITC Secure's Microsoft focus, Microsoft Verified Managed XDR status, Pulse portal, long managed-service history and broad MXDR service components. Buyers should validate pricing, response authority, SOC operating model and exact component inclusion directly.
Reddit (r/sysadmin, r/msp)
No meaningful Reddit signal found for ITC Secure MDR or MXDR specifically.
Questions to ask
7 questions to ask ITC Secure▾
- 1.
Which MXDR components are included in our quote and which are separate modules?
- 2.
Which Microsoft licenses, Microsoft Sentinel costs and Pulse costs sit outside the managed-service fee?
- 3.
Which response actions can ITC Secure take directly in our Microsoft tenant and which require approval?
- 4.
What incident-response work is included in MXDR and what requires a separate incident-response engagement?
- 5.
Where is the SOC located and what is the overnight shift model?
- 6.
What contractual SLA applies to high-severity triage, escalation and containment?
- 7.
What Pulse reports, rules, cases and Microsoft configurations can we export if we leave?
Evidence
Sources reviewed
Public-data caveats
- -No public contractual response-time SLA is recorded for this profile.
- -No public fixed price is recorded; compare only after a scoped quote.
- -No public breach warranty is recorded.
- -Response authority may depend on pre-approval and contract scope.
- -MDR analyst headcount or analyst-to-customer ratio is not public.