A Comprehensive Cyber Security Operations Platform
AT A PRICE YOU CAN AFFORD
Welcome to SNAP-Defense, Blackpoint’s Security Operations & Incident Response platform. Built by experienced engineers and former cyber security operators, it detects lateral movement in its earliest stages, allowing you to instantly neutralize threats before they spread.


Today, companies utilize numerous security products; most are standalone, complex, and slow. Detecting and analyzing hacker tradecraft often takes weeks of analysis and, once found, no effective response exists.
Blackpoint’s SNAP-Defense Security Operations & Incident Response platform is a gamechanger; it reduces your security stack while delivering realtime threat alerts and immediate response with the click of a button.

the new age of cyber security
Almost all significant cyber security compromises involved lateral spread and privileged account compromise.


Modern Bloat Stack
SNAP Lean Stack
Real-Time Threat Detection
Ease-of-use
Lateral Spread Detection
Low Cost
LOW-LEVEL ANALYSTS
SNAP-DEFENSE
DEPLOYMENT
We offer SNAP-Defense as a 24/7 MDR Service. Our highly-experienced team of MDR analysts will monitor your environment every hour of every day, taking action when it's needed to stop a hacker in their tracks.

Premise

Secure Cloud

Managed Service
Simple Endpoint Agent Deployment
SMS & Email Notifications
Two-factor Login Authentication

Managed Service
Live Network + Asset Visibility
Visualize Alerts & Hunt
Threats in Realtime Within your OT/IT Infrastructure

Live network map of Cisco, Juniper, endhost, server, mobile, and IoT devices.
Operational Technology (OT), Building Automation Systems (BAS), and Industrial Control Systems (ICS) asset discovery and mapping (with NICOS).
Displays Wi-Fi connected devices, including support for Meraki API.


Patented Lateral Spread Detection
Detect lateral movement in its earliest stages before
it spreads.

Most major breaches involve lateral spread and privileged account compromise.
(Target, DNC, Equifax, etc.)
SNAP-Defense is the only product on the market that alerts on privileged user activity, giving our analysts the ability to detain an infected asset before the hacker is able to complete their mission.
<<< A HACKER TIMELINE AND WHERE SNAP-dEFENSE COMES IN
REALTIME THREAT RESPONSE
Stop Threats in Realtime with
Built-in, Immediate, and
Effective Response

Point-and-click response to detain compromised devices
Easily understandable alerts enable rapid triage by Tier 1 analysts
with detailed data for Tier 3 analysts
Custom detainment notification message to device users


Integrated IT/IoT/OT Protection
Secure OT/BAS/ICS networks with live-monitoring, visualization, and actionable alerts


Asset Visibility
NICOS provides asset discovery and visibility across the infrastructure by monitoring DHCP traffic.
Remote Access Monitoring
NICOS Monitors network traffic to detect remote access connection attempts regardless of whether the connection succeeds or fails.
Threat Detection
NICOS threat detection relies on detecting malicious or suspicious network traffic by consuming daily threat intelligence feeds to identify bad domains.
Extensibility
In addition to asset visibility, remote access monitoring, and threat detection, NICOS also supports custom configuration.
RISK AND COMPLIANCE REPORTING
Identify Security Risks & Ensure Continuous Compliance

Summary Report
Real-time system health and suppressed event reports with custom filters.
Compliance Report
Built in compliance checklists to simplify compliance and regulation tasks.
Privileged Activity Report
Keep track of every movement that occurs within your network.
Security Events Report
Anti-malware, USB activity, & more in one easy-to-read report.
Network Report
Gain insight into enumeration activity, network changes, and insecure passwords.
