CompassOne: A Faster, Smarter, and More Powerful Platform Than Ever Before

New CompassOne offering and innovations designed with our clients at the core

The CompassOne platform was built to give security teams a simpler, more unified way to protect their environments and clients. Instead of trying to manage fragmented tools and alert noise without context, CompassOne consolidates what’s traditionally disconnected and helps mature security programs from reactive response to proactive risk reduction. For MSPs, who must scale security across diverse client environments, the platform simplifies multi-tenant management and automates the redundant, manual tasks that come with managing multiple, diverse security programs.  

CompassOne helps teams strengthen their security posture while reducing complexity by bringing key security components, such as prevention, detection and response, and compliance, into one platform, backed by a 24/7 human‑led, AI‑powered SOC. Since its conception, we have committed to collaborating with our clients and partners to ensure we align with their needs.  

Over the past year, feedback and insights from our MSPs and clients have driven the next evolution of CompassOne. Today, we are introducing the new CompassOne Core plan that is available in addition to our Essentials and Standard offerings, along with a series of platform innovations that expand visibility, strengthen protection, and streamline operations. These additions are an important step forward for CompassOne.  

Expanding CompassOne with Core 

The addition of Core to the CompassOne portfolio is designed to meet organizations where they are on their cybersecurity maturity journey. Core builds upon Essentials with more capabilities, including Vulnerability Management, Cloud Posture, and Application Control, while Standard extends the platform further with SIEM logging and compliance features. This makes Core a cost-efficient way for organizations to strengthen cybersecurity resilience and mature their program. 

“CompassOne Core gives MSPs the flexibility to expand and differentiate their services offerings as they scale their business. This can help strengthen their ability to serve as a trusted security advisor while helping their clients build resilient, measurable security programs.”  -Manoj Srivastava, Chief Technology and Product Officer, Blackpoint Cyber

Each tier of the CompassOne portfolio is designed to meet unique needs and provide a scalable path to continuous security maturity.  

CompassOne at a Glance 

With the addition of Core, CompassOne now offers three tiers, making it easy to build, mature, and improve your security programs.  

• Essentials: Provides 24/7 managed detection, response, and prevention, along with Security Posture Rating and critical integrations that increase visibility across the attack surface. It’s available for ITDR, MDR, or as a combination of both and establishes a strong security foundation. 

• Core: Builds on Essentials with critical cybersecurity capabilities, including Vulnerability Management, Cloud Posture, Application Control, and expanded integrations. It’s ideal for organizations looking to strengthen security and adopt a more proactive program.  

• Standard: Extends Core with SIEM logging, compliance, reporting, and additional integrations. It supports proactive and mature security programs for enhanced cyber resilience. 

What’s New: Innovations Across the CompassOne Platform 

In addition to the new Core offering, we’re also introducing several platform-wide innovations focused on increased visibility and improved workflows.  

Integrations That Connect Tools 

Expanded Integrations: CompassOne now supports nearly 40 third-party integrations across security, identity, cloud, and business operations. We also added expanded capabilities to existing integrations, including the ability to sync tickets between our SOC and an organization’s instance of ConnectWise Management.    

SIEM Data to SOC: New firewall and network integrations allow our SOC to monitor and investigate login and VPN connection events from network and security tools, including 1Password, LastPass, SonicWall, Fortigate, and WatchGuard. This capability extends 24/7 MDR coverage across more of the attack surface.  

With more third-party integrations in the CompassOne platform, teams can accelerate processes and manage security initiatives in one place. These additions and enhancements are just one step in our continuous innovation journey, with more integration capabilities on our roadmap.  

Smarter, Improved Workflows 

Built on our growing integration ecosystem, these updates ensure smoother operational workflows and reduce manual upkeep.  

Automated Alert Resolution: CompassOne can now automatically close alerts in Microsoft Defender for Endpoint, SentinelOne, Arctic Wolf Auroa Endpoint Security, and CrowdStrike upon resolution by Blackpoint’s SOC. This reduces redundant, manual tasks. And there’s more to come.  We’re planning to expand this capability with additional third-party tools. 

Global Notifications for ITDR: Partners can now apply and manage security alerts from Microsoft 365, Google Workspace, and Cisco Duo across all tenants or specific clients from a single location, removing repetitive configuration steps and maximizing operational efficiency.  

These enhancements create a more connected workflow and streamline operations.  

Improved Visibility 

Along with integrations and workflow innovations, increased visibility and useful context enhancements were made across the platform.  

Enhanced Incident Details Page: We are introducing a new way to view the incident details page to make it easier to find out what happened, why it happened, and how it was resolved, enabling partners to effectively communicate incidents with clients.  

Linux Agent: CompassOne now includes a dedicated Linux agent, allowing continuous monitoring and detection across Linux environments. This helps provide even more coverage across the attack surface.  

AI‑powered Detection Summaries: Complex SOC investigations are automatically distilled into clear, client‑ready summaries that explain what happened, how the SOC responded, why it matters, and next steps. This accelerates remediation, reduces analysis, and demonstrates the value of MDR.  

Demonstrate Value 

CompassOne was built to help organizations improve security outcomes and make it easier to demonstrate these improvements. Since the platform’s conception, Security Posture Rating (SPR) has included a NIST‑aligned score that provides a clear, quantifiable view of security posture and actionable guidance to strengthen it.  

SPR continues to be the foundation for new capabilities, including the new executive reports feature in this round of innovations. These monthly reports give clients and MSPs a high‑level view of posture, key risks, MDR performance, and progress over time, making it easier than ever to demonstrate the value of security efforts and reinforce confidence with stakeholders. 

For CompassOne customer Tom Glover, the security posture rating and reports have become an indispensable part of his client interactions.  

“For me, the biggest benefit is visibility. To be able to visualize the attack surface, to be able to see what the security score is, see the areas that need improvement has really helped us get much more proactive with our security and give peace of mind to our customers by being able to show that report. The security posture rating is one of the major advancements that I’ve experienced with CompassOne.” – Tom Glover, Chief Revenue Officer at Response and Technology Partners 

Extended Compliance Without Compromising MDR 

We are also enhancing CompassOne to evolve with growing compliance needs. We’re recently added  Cybersecurity Maturity Module Certification (CMMC) Privacy Mode, a tenant‑level configuration that helps partners and clients reduce the risk of exposing regulated or sensitive data, including Controlled Unclassified Information (CUI), to Blackpoint’s SOC while maintaining full MDR coverage. As an External Services Provider (ESP), Blackpoint supports clients in implementing the controls required by NIST-800-171, and with Privacy Mode enabled, Blackpoint safeguards CUI without accessing, collecting, storing, or transmitting CUI. This feature strengthens the security and compliance capabilities of CompassOne and gives organizations greater confidence in protecting sensitive data while continuing to benefit from expert threat detection and response.  

See What’s New with CompassOne 

CompassOne is now faster, smarter, and more powerful than ever before. These innovations reflect our commitment to evolving the platform alongside our client’s security journey. Join our upcoming March 10^th webinar to see some of these capabilities in action and learn how you can maximize the value of CompassOne. Register now.