Advanced MDR · Fortress Tier
We handle detection. We handle response. We handle compliance. You run your firm.
Everything in Guardian, plus a $250,000 breach warranty, a 10-hour monthly incident response retainer, vertical compliance packages, 365-day log retention, and proactive threat hunting. Fortress is the complete delegation tier.
Everything in Guardian, Plus
Fortress is built for firms whose insurance, regulators, or clients demand more than monitoring. The additions below are what separate continuous detection from complete program ownership.
Financial
$250,000 Breach Warranty
If a breach occurs while we're monitoring you, our warranty covers eligible response costs up to $250,000. Backed by Cysurance.
Retainer
10 Hours of IR Per Month
Incident response hours included monthly. Roll over for major incidents. No surprise bills when you need help fast.
Compliance
Vertical Compliance Packages
Audit-ready documentation for ABA Model Rule 1.6, WISP (FTC Safeguards), NAIC Model Law 668, and HIPAA Security Rule. Updated continuously.
Forensics
365-Day Log Retention
A full year of searchable telemetry. Required for forensic investigation, regulatory inquiry, and litigation discovery.
Proactive
Continuous Threat Hunting
Hypothesis-driven hunts for adversary behavior that doesn't trip standard rules. Dormant persistence, lateral staging, slow exfiltration.
Authority
Regulatory Filing Support
We draft breach notification language, manage HIPAA 60-day and state 30-day clocks, and coordinate with your counsel on disclosure.
How Fortress Works
Fortress is what you buy when an incident is no longer hypothetical and you need a single phone call that solves it.
Step 1
Continuous
Same 24/7/365 detection and response as Guardian, with extended log retention and proactive hunting layered on top.
Step 2
Proactive Hunt
Threat hunters work hypothesis-driven engagements monthly. Findings feed back into detection content.
Step 3
Incident Response
When an incident hits, your 10 hours of retainer activate immediately. No SOW negotiation. No paperwork delay.
Step 4
Compliance Output
Monthly attestation reports, evidence packages for audit, and updated policy templates. Built for the framework you operate under.
Why Fortress Over Guardian
If you're sitting in any of these situations, Fortress is the right tier.
Regulated Vertical
Law firms, healthcare practices, CPA firms, and insurance agencies face regulatory frameworks that require documented compliance. Fortress includes the documentation.
Client Contract Requirements
Enterprise clients increasingly require their vendors to maintain MDR with IR retainer and breach warranty. Fortress checks both boxes.
Recent Incident
If you've been breached before or had a near miss, the 10-hour IR retainer and $250K warranty change the math on your next incident from existential to manageable.
Pricing
Fortress
$22/endpoint/month
Monthly billing. $19/endpoint/month with annual commitment.
- Everything in Guardian
- $250,000 breach warranty (Cysurance-backed)
- 10 hours of incident response per month
- Vertical compliance packages (ABA, WISP, NAIC, HIPAA)
- 365-day log retention
- Continuous proactive threat hunting
- Regulatory filing and notification support
- 25 endpoint minimum, $500/month floor
Common Questions
What's covered under the $250,000 breach warranty?
Eligible incident response costs incurred during an active breach while we're providing monitoring services. Specific terms are governed by the underwriting policy through Cysurance and provided in your contract.
What happens if I use less than 10 IR hours in a month?
Hours roll over within your contract term. They do not expire monthly.
Which compliance frameworks are included?
Four are included by default: ABA Model Rule 1.6 (legal), WISP under FTC Safeguards (financial services and CPAs), NAIC Insurance Data Security Model Law 668 (insurance), and HIPAA Security Rule (healthcare). Custom frameworks available through Aegis professional services.
Can I upgrade from Guardian to Fortress mid-contract?
Yes. We pro-rate the difference and activate the additional services within one business day.
Move to Fortress when continuous detection isn't enough.
Schedule a consultation. We'll review your insurance requirements, regulatory framework, and current posture to confirm whether Fortress is the right fit.