SOC + AlertMonitor.
Complete visibility, bundled in.

Because security doesn't scale by feature — it scales by exposure. A 5-endpoint dental office faces the same phishing, the same ransomware, the same insider threats as a 250-seat enterprise. The only thing that changes is how many endpoints you have and how much data we're processing. Withholding features from small plans would mean giving small businesses fake security, and we refuse to do that.

Without AlertMonitor we don't have the network mapping, AI incident enrichment, or endpoint-to-network dependency context that makes our SOC response faster and more accurate than a standard MSSP. We can't give you the level of visibility and protection we promise without it — so the AlertMonitor license is included in your SOC tier price. One invoice, one number.

Endpoints are laptops, desktops, servers, and VMs under active monitoring. Network devices (Cisco switches, firewalls, APs, routers) are managed separately through the AlertMonitor Cisco Management module with daily config backups. Each tier has a network device cap because large environments generate significant monitoring data and traffic. Enterprise plans allow custom scoping for very large or multi-site deployments.

The AlertMonitor Sensor is a lightweight appliance or VM we deploy inside your network. Internal vulnerability scans, lateral movement detection, and traffic analysis run from this sensor — they cannot run reliably from outside your network. It is included and deployed as part of every onboarding.

We offer both month-to-month and annual agreements. Annual commitments come with a reduced rate. Month-to-month pricing as listed is available with 30-day notice to cancel.

Budget providers typically give you a dashboard and alert notifications — you still do the work. Our SOC includes AlertMonitor's AI Incident Engine, human analyst triage, active threat hunting, network mapping with blast radius, self-healing automation, and Phishing? analysis. When an alert fires, we investigate and act — not forward it to you.

Yes — this is the entire point. Our platform was built to serve everyone equally, not to sell watered-down security to small businesses. A SOC Starter client at $150/mo gets the full AI Incident Engine, continuous recon, vulnerability scanning, HoneyBadger tripwires, Phishing? analysis, Cisco management, a dedicated analyst, and every other capability in the platform. The only difference from an Enterprise client is the endpoint count.

Yes. The project price includes scoping, execution, the full report (executive summary + technical findings + remediation guidance with CVSS scores), and one free retest of critical and high findings within 60 days.

Absolutely — and that's a common path. The pen test gives you a clear picture of your actual exposure. We scope the SOC coverage based on what we find, so you're not paying to monitor the wrong things.

AlertMonitor supports optional paid add-ons billed on top of your base SOC tier. Currently available: endpoint backup at $10/endpoint/month with long-term cloud storage, and AutoPT — automated penetration testing starting from $35 per test with full pipelines from $300. Invoices are generated automatically. Visit the AutoPT product page for the full pricing table.

Yes. Our SOC operations are fully remote — we monitor and respond nationwide. AlertMonitor deploys via managed agents that work anywhere. Physical security and on-site pen tests can be scoped for any location.