

Truesec MDR
Technology-agnostic MDR from a Swedish cybersecurity firm with deep incident response heritage, citing 120,000+ hours of IR experience that feeds its detection engineering. Three tiers from Core through MDR Black, where IR costs for breaches on monitored devices are covered without a separate retainer. PE-owned by IK Partners since 2021.
Buyer fit
Good fit when
- ✓Nordic enterprises wanting the largest regional SOC with local language support
- ✓Organizations with existing Defender or CrowdStrike deployments wanting technology-agnostic MDR without agent replacement
- ✓Companies wanting IR costs covered for breaches on monitored devices (MDR Black tier)
Watch out when
- ×US-based organizations wanting a fully staffed local SOC (bulk of specialists in Europe)
- ×Buyers relying on independent reviews for vendor evaluation (zero public reviews anywhere)
- ×Organizations wanting published MTTD/MTTR SLA commitments or MITRE-validated detection metrics
Coverage
EDR
SIEM
Cloud
Additional capabilities
Incident response
Pricing
What costs extra
- –OT/ICS MDR is a separate service (Nozomi Networks partnership)
- –IR retainer is separate for Core and Enterprise tiers (included only in MDR Black)
Cost caveats
- –No public pricing for any tier, requires sales engagement for any estimate
- –IR is a separate retainer on Core and Enterprise, only Black includes it
- –US customers may get a different experience since bulk of 350+ specialists are in Europe
Pricing compiled from public sources. Verify directly with the provider.
Team and access
Reputation
Effectively unrateable. No public reviews on G2, PeerSpot, or Gartner Peer Insights. Not in Forrester Wave or Gartner MQ for MDR. No Reddit mentions. Strong Nordic reputation based on vendor claims and partner references (EY, Microsoft MISA), but impossible to validate through independent peer feedback.
What customers praise
- ✓Largest Nordic SOC with local language support (Swedish, Danish, Finnish and German)
- ✓120,000+ hours IR experience (vendor-stated) feeding detection engineering
- ✓MDR Black includes IR costs for breaches on monitored devices
Common complaints
- ×Zero public reviews on any major platform, claims cannot be independently validated
- ×No published MTTD/MTTR metrics or MITRE evaluation participation
- ×Nordic-focused with limited and unclear US operations staffing
Questions to ask
- 1.
How does MDR Black's IR cost coverage work in practice, what qualifies as a monitored device breach and are there coverage limits?
- 2.
What percentage of the 350+ specialists are US-based and how does this impact response times for US customers?
- 3.
What internal MTTD and MTTR metrics does your SOC achieve, even if not publicly published?
- 4.
What is the onboarding timeline for MDR Enterprise and MDR Black (72 hours is only confirmed for Core)?
Evidence
Sources reviewed
Public-data caveats
- –No public contractual response-time SLA is recorded for this profile.
- –No public fixed price is recorded; compare only after a scoped quote.
- –No public breach warranty is recorded.
- –Response authority may depend on pre-approval and contract scope.
Also consider
Information compiled from public sources. Verify details directly with the provider before making decisions.