Sophos or Kaspersky — which one?

Both are world-class. We recommend Sophos for tighter Microsoft 365 integration and Kaspersky for deep behavioural detection in OT/regulated environments. We size and quote both.

Is this just antivirus?

No. EDR/XDR is full behavioural detection, response, and forensics — far beyond signature-based AV.

What if the management appliance fails?

Mid-Market and Enterprise tiers include HA. Endpoints continue protected with cached policies during any outage.

Does this replace our SOC?

It can. nCrypt SOC monitors and responds 24/7. If you have an in-house SOC, we co-manage and feed alerts to your SIEM.

How are agents deployed?

Standard MDM/Intune/SCCM packaging. We provide PowerShell, Jamf, and Intune-ready packages.

What is included in the IR retainer?

20 hours/year of incident-response time included for SMB, 50 hours for Mid-Market, 100+ for Enterprise. Additional hours billable.

Does this cover macOS and Linux?

Yes. Both Sophos and Kaspersky have full macOS and Linux EDR coverage.

What about mobile devices?

iOS and Android coverage is available via mobile-EDR add-on. We size it into your bundle if needed.

Hardware-as-a-Service · 36-month bundle

EDR for every endpoint, monitored 24/7. From RM30/endpoint/month.

Sophos Intercept X or Kaspersky EDR Expert + on-prem management appliance + nCrypt SOC monitoring — bundled at 36-month per-endpoint pricing.

Calculate your bundle Talk to sales

What's included in the bundle

EDR/XDR agent licences (Sophos or Kaspersky)

On-prem management appliance (HA in Mid-Market+)

24/7 SOC monitoring & response

Quarterly threat-hunt reports

Hardware refresh at month 30

Incident-response retainer hours included

Who this is for

✓Companies with 50-2,000 endpoints and no in-house SOC
✓Regulated industries needing audit-grade endpoint forensics
✓Hybrid workforces with high mobile-device exposure

Deployment timeline

Week 1

Appliance install, agent packaging, pilot deployment (10% of fleet)

Week 2-3

Phased rollout to remaining endpoints, tuning

Ongoing

24/7 monitoring, monthly tuning, quarterly threat hunts

Sample bundles by company size

SMB

RM 1,500 – 3,000 / month

50-100 endpoints, single management node

MidMarket

RM 3,000 – 8,000 / month

200-500 endpoints, HA management, server EDR

Enterprise

RM 8,000 – 25,000+ / month

500+ endpoints, multi-region, XDR with cloud + email + identity

Aligned to your regulatory obligations

BNM RMiTPDPAISO 27001PCI DSS

Frequently asked questions

Need a one-off engagement instead of a leased bundle?

See our consulting service →

Ready to size EDR for your environment?

Three minutes in the calculator. A precise quote emailed within 24 hours.

Calculate my bundle Talk to sales

Financing available via our partner financial institutions. Indicative monthly figures based on standard 36-month terms; final pricing subject to credit assessment and signed master service agreement.

Ready to size EDR for your environment?

Three minutes in the calculator. A precise quote emailed within 24 hours.