Netsurion
Co-managed SIEM and SOC platform delivering managed XDR to mid-market and SMB organizations through its Open XDR EventTracker engine
- Service
- Co‑managed SOC
- Response
- Co‑managed SOC
Best for
Mid-market companies with 200-2,000 employeesUsually replaces
Running a SIEM alone with no one watching itCheck first
Detection capabilities rely heavily on signature-based, out-of-box rules rather than advanced behavioral analyticsCoverage
Covers
- Proprietary Open XDR platform with integrated SIEM, log management, and threat intelligence
- Co-managed SIEM model allowing shared visibility between internal IT and Netsurion SOC analysts
- EventTracker EDR natively integrated with SIEM for unified endpoint and log correlation
Pros and limits
Works well
- Co-managed model gives internal IT teams shared dashboard access and control alongside Netsurion analysts
- Accessible entry-level pricing makes managed SIEM viable for SMBs that cannot afford enterprise-tier providers
- Deep PCI-DSS compliance expertise — particularly strong for retail, hospitality, and multi-location franchise environments
Watch out for
- Response is primarily guided remediation rather than full active containment or automated response
- Platform UI and reporting have been noted as less polished compared to newer XDR competitors
- Acquired by Lumifi Cyber in May 2024, introducing uncertainty around long-term product roadmap and brand continuity
Pricing
- Starting price
- ~$3,000-$5,000/month
- Billing model
- Per-asset, Tiered, Custom
- Minimum contract
- 12 months
- Trial
- Available
- Onboarding
- 14-30 days
Pricing varies by number of log sources, endpoints monitored, and service tier. EventTracker Log Management starts at approximately $4,000/year; EventTracker Security Center from $13,000/year. Managed SOC services are quoted per environment. T-shirt sizing (S/M/L) available through EventTracker Essentials for simplified scoping.
Connects with
- SIEM
- Netsurion Open XDR / EventTracker (proprietary)
- EDR / Endpoint
- EventTracker EDR (native), SentinelOne, Carbon Black, Microsoft Defender
- Cloud
- AWS, Azure, Microsoft 365, Google Cloud
- Other
- Okta, Cisco, Palo Alto Networks, Fortinet, Check Point, Barracuda, AWS CloudTrail, AWS Security Hub, Azure Monitor
Questions
How much does Netsurion cost?
Netsurion pricing is based on the number of log sources, endpoints, and service tier selected. Entry-level managed SIEM packages for SMBs start in the $3,000 to $5,000 per month range. The self-managed EventTracker Log Management platform starts at approximately $4,000 per year, while EventTracker Security Center begins around $13,000 per year. EventTracker Essentials offers simplified t-shirt sizing (Small, Medium, Large) for predictable scoping. Full managed SOC engagements require a custom quote.
What is the co-managed SIEM model?
Netsurion's co-managed SIEM gives both the customer's internal IT team and Netsurion's 24/7 SOC analysts shared access to the same EventTracker platform. Internal teams maintain visibility into alerts, dashboards, and logs while Netsurion handles continuous monitoring, threat hunting, and guided remediation — jointly defined through SecOps runbooks and IR playbooks tailored to each environment.
Is Netsurion still an independent company?
No. In May 2024, Lumifi Cyber acquired Netsurion to enhance its managed detection and response capabilities. Netsurion's Open XDR platform and customer base of approximately 400 clients were absorbed into Lumifi's operations, alongside Lumifi's US-based SOC and proprietary SHIELDVision platform. The Netsurion brand and EventTracker platform continue to operate, though the long-term integration roadmap is still unfolding.