eSentire vs Secureworks (a Sophos company)
eSentire
eSentire is one of the longest-operating pure-play MDR firms, protecting more than 2,000 organisations across 80+ countries. Its proprietary Atlas platform ingests signals across the customer's vendor stack and powers the firm's 24/7 SOC, threat hunting, and incident response. It runs an in-house Threat Response Unit (TRU) for original research and is well known for deep specialisation in financial services, legal, and insurance verticals.
Pros
- One of the most established pure-play MDR providers (operating since 2001)
- Strong vertical playbooks for financial services and legal, including hedge fund and law-firm specialisation
- Vendor-broad Atlas platform reduces lock-in to a single EDR
- In-house TRU threat research team backs proactive hunting
Cons
- Premium pricing; not positioned for the very low end of SMB
- Atlas terminology has shifted across MDR / XDR / agentic AI; clarify current taxonomy in contract
- Limited public pricing
Pricing: Custom (contact sales)
Secureworks (a Sophos company)
Secureworks pioneered the modern MSSP model and was majority-owned by Dell before its acquisition by Sophos in an $859M deal that closed February 2025. The Taegis platform (MDR, XDR, NDR, VDR, embedded SIEM) continues as a standalone, vendor-open product line within Sophos with native Sophos Endpoint integration. The Counter Threat Unit (CTU) remains a key differentiator.
Pros
- Counter Threat Unit is one of the longest-running in-house threat research teams
- Taegis remains vendor-open / BYO-EDR even post-Sophos
- Embedded SIEM removes the need for a separate Splunk-class deployment for many customers
- Deep history with regulated industries and global SOC footprint
Cons
- Ongoing integration risk following the Sophos acquisition
- Heritage SIEM/MSSP roots can mean a heavier deployment than newer cloud-native MDRs
- Limited public list pricing
Pricing: Custom (contact sales)