Loading...
Loading...
One contract, four operating capabilities: 24/7 managed detection & response, security operations centre, privileged access management, and incident response retainer — all aligned to BNM RMiT, NACSA Cyber Security Act 2024 and PDPA 2024.
Building an in-house 24/7 security operations capability in Malaysia is hard. Round-the-clock SOC coverage typically requires 8-15 trained analysts across three shifts, plus tier-2 hunters, an on-call IR lead and a SIEM engineer. Recruiting and retaining that team in a tight Malaysian cybersecurity labour market is the single largest cost in most enterprise security budgets — and the failure rate is high.
A managed service compresses that fixed cost into a predictable monthly retainer. You get continuous monitoring, expert investigation, and the ability to scale tooling, threat intelligence and response capability without the headcount risk. For Malaysian financial institutions, NCII operators and regulated enterprises, an MSSP is also the most defensible way to demonstrate continuous oversight to BNM, NACSA and PDPA examiners.
nCrypt's managed services hub bundles the four capabilities most clients need together so you have one accountable partner, one set of dashboards, and a single quarterly business review across the entire defensive posture.
24/7 monitoring of endpoints, identities, cloud workloads and SaaS. Threat hunting, alert triage, containment actions executed by our analysts. Tooling-agnostic: Microsoft Defender XDR, CrowdStrike, SentinelOne, Sophos, Trend Vision One.
SIEM-led log aggregation, correlation and rule engineering. Use case development mapped to MITRE ATT&CK. Daily/weekly/monthly tactical and executive reporting. Compliance log retention to BNM RMiT and PDPA 2024 requirements.
Vaulting, session monitoring and just-in-time elevation for human and machine privileged accounts. Quarterly access certification campaigns, joiners-movers-leavers integration. Tooling-agnostic across CyberArk, BeyondTrust, Delinea.
Curated tactical and strategic intelligence on adversaries targeting Malaysian financial services, government, healthcare and energy. Brand monitoring, dark-web exposure tracking, executive protection feeds. Direct integration into SIEM and EDR.
Pre-negotiated DFIR engagement on standby. Defined response SLA, agreed hourly draw-down, NACSA Act 854 §22 reporting support, BNM 1-hour notification assistance for FIs. Annual tabletop exercise included.
Continuous external attack surface monitoring, internal scan orchestration and risk-prioritised remediation tracking. Monthly executive scorecard. Optional integration with our pentest practice for human validation of critical findings.
Managed services are priced as a fixed monthly retainer scoped on three primary inputs: protected asset count (endpoints, servers, cloud workloads, identities), log volume into the SIEM (typically gigabytes per day), and required response SLA tier. Annual contracts attract a 10-15% discount over equivalent monthly billing and are the default for regulated clients.
Indicative monthly retainer ranges (Malaysian Ringgit, exclusive of tooling licence pass-through):
Tooling licences (SIEM, EDR, PAM platform) are billed at cost-pass-through with documented vendor pricing. We do not mark up vendor licences.
Business-hours triage, critical alert response within 4 hours, monthly executive report, annual tabletop.
24/7 monitoring, critical response within 30 minutes, weekly tactical report, semi-annual tabletop, quarterly threat hunt.
24/7 monitoring, critical response within 15 minutes, dedicated lead analyst, named on-call engineer, monthly executive review with CISO.
The nCrypt SOC is staffed by Malaysian-based analysts at three tiers. Tier-1 analysts handle initial alert triage and enrichment, working through documented runbooks. Tier-2 hunters drive proactive threat hunting, advanced investigation and detection-rule engineering. Tier-3 incident leads run major-incident response and act as the named technical interface to client CISOs.
Our analysts hold individual certifications including CompTIA Security+, GIAC GCIA/GCIH, OSCP, CREST CRT and Microsoft SC-200. The SOC operates aligned to NACSA Cyber Security Act 2024 expectations for licensed cyber security service providers — our NACSA licence application has been submitted and is in process.
For sensitive engagements (defence, government, BNM-regulated FIs) we offer Malaysian-citizen-only analyst allocation and on-shore data processing as contractual options.
An MSSP is an outsourced partner that operates security controls on your behalf — typically a 24/7 Security Operations Centre, managed detection and response, vulnerability management, identity and access governance, and incident response. Instead of building these capabilities in-house (which requires 8-15 specialised staff to cover round-the-clock shifts), you contract for the outcome.
We staff the SOC with Malaysian-based analysts who understand BNM RMiT, NACSA Cyber Security Act 2024 and PDPA 2024 obligations. We are CREST member-firm in application and our individual consultants hold OSCP, OSCE, OSWE and CREST CRT certifications. We also fold in our pentest practice — findings from your annual pentest feed directly into SOC detection logic.
Our primary SOC operates from Malaysia with follow-the-sun coverage from regional partners. Data residency is Malaysia by default for regulated clients. We can scope to your data sovereignty requirements during contracting.
Annual contracts are standard for managed detection, SOC and PAM (12-month minimum with quarterly reviews). Incident Response Retainers are sold as 12-month or 24-month commitments. Threat intelligence and short tactical engagements can be monthly.
Pricing follows asset count, log volume, monitored identities, cloud workloads and on-call hour commitment. Indicative monthly ranges run from RM 8,000 for a small SME bundle to six figures for tier-1 financial institution scope. We provide fixed-monthly retainer pricing once scoping is complete — no surprise overage charges.
Scoping calls take 45 minutes. We can have a managed services SOW signed in under three weeks and operational onboarding complete within 30 days.
Get a Scoped Quote