Login
      Contents x
      Co-Managed Sentinel Subscription
      • 11 Feb 2025
      • 1 Minute to read
      • PDF
      Contents

      Co-Managed Sentinel Subscription

      • Updated on 11 Feb 2025
      • 1 Minute to read
      • PDF
      Article summary

      Red Canary’s Co-Managed Sentinel Subscription is an annual subscription that provides ongoing management of the health, analytics, and administrative operations for your Microsoft Sentinel environment. It includes three key features needed to maintain a functional and healthy Microsoft Sentinel instance:

      Ongoing Health Checks

      Red Canary will build and deploy a series of rulesets and workbooks to establish a baseline then monitor the health and operational status of your Microsoft Sentinel instance. Red Canary staff will then alert you if we detect any issues. We’ll also meet with you monthly to conduct an overall health check review of your Microsoft Sentinel environment.

      Analytics

      Red Canary will conduct ongoing development of analytic rulesets and threat hunting queries for your Microsoft Sentinel deployment based on current threats identified by our detection engineers and intelligence operations. We’ll conduct any necessary tuning of the analytics and deploy updates on a quarterly basis.  

      Management Support

      The subscription includes a package of 20 Microsoft Sentinel Management Support hours per quarter (for a total of 80 hours per year) to be used for the following activities:

      Log Source Management
      Upon request, Red Canary will facilitate log ingestion into your Microsoft Sentinel instance by leveraging Microsoft and third-party data connectors and build out any necessary data parsers.

      Automation and Visualization
      Upon request, Red Canary will update or create new automations and visualizations. These activities include building out or refreshing existing workbooks, dashboards, playbooks, and automations within Microsoft Sentinel.

      Custom Analytics
      Upon request, Red Canary will create custom analytic rulesets and threat hunting queries for Microsoft Sentinel based on your unique requirements. Red Canary will conduct any necessary tuning of the custom analytics to your Microsoft Sentinel deployment.

      Health Check Support
      Upon request, Red Canary will provide support to address issues identified by the Health Checks.

      Guided Support Option
      Upon request, Red Canary, will assign our experts to work alongside and upskill your Security team.

      Using Management Support Hours

      To spend your Microsoft Sentinel Management Support hours, please submit a request to the Red Canary Support team:

      1. Sign in to the Red Canary Support Center.

      2. Click Contact Us at the top-right.

      3. (Optional) Add CC emails for any other people in your organization you want to notify.

      4. Choose Technical Support from the How can we help you? dropdown.

      5. Choose Co-Managed Sentinel Subscription Customers from the Product dropdown.

      6. Enter your request title under Subject.

      7. Enter a Description of your request.

      8. Click Submit.

      Please see the Red Canary Support Center Guide for more information.

      Was this article helpful?
      What's Next
      PRODUCTS & SOLUTIONS
      OPEN SOURCE
      PLATFORM
      SUPPORT
      Change password!
      Changing your password will log you out immediately. Use the new password to log back in.
      Change profile
      Success!
      First name must have atleast 2 characters. Numbers and special characters are not allowed.
      Last name must have atleast 1 characters. Numbers and special characters are not allowed.
      Enter a valid email
      Enter a valid password
      Your profile has been successfully updated.
      Logout