Cyber security that protects, detects, and responds

Softcat works with over 10,000 customers across the UK. Those relationships create a deep understanding of each organisation's environment, risk profile, and priorities. Cyber security services build on that foundation.

Get in touch

Softcat Cyber Services

Advanced Cyber Consultancy

Structured security assessments, governance design, and incident readiness planning. Aligned to NCSC CAF, NIST CSF, NIS2, and DORA.

Find out more

Platforms and
Controls

Ongoing management of firewalls, email security, and vulnerability management. Keeps platforms configured, compliant, and effective.

Discover more

Managed Extended Detection & Response

Microsoft-verified 24/7 threat detection, investigation, and active containment through a UK-based SOC. Analysts respond rather than forward alerts.

Find out more

Keeping our customers secure

Deep customer relationships across the UK, backed by verified cyber security credentials and operational capability.

UK customers

Existing relationships that create visibility

Technology relationships across the UK give Softcat deep understanding of each customer's environment, risk profile, and priorities.

analyst capacity

SOC analysts never run at full allocation

Analysts operate at 60% capacity. That headroom means availability for priority incidents without queue delays.

response SLA

Microsoft-verified detection and response time

Verified benchmarks for time-to-detect and time-to-respond. A requirement of Microsoft MXDR verification.

UK customers

Existing relationships that create visibility

Technology relationships across the UK give Softcat deep understanding of each customer's environment, risk profile, and priorities.

analyst capacity

SOC analysts never run at full allocation

Analysts operate at 60% capacity. That headroom means availability for priority incidents without queue delays.

response SLA

Microsoft-verified detection and response time

Verified benchmarks for time-to-detect and time-to-respond. A requirement of Microsoft MXDR verification.

How we work

Each Softcat cyber service connects to the next. Assessments inform strategy. Strategy shapes architecture. Architecture guides implementation. Implementation feeds managed operations. Continuous assurance confirms that protection remains effective.

This is not a rigid sequence. Organisations enter at any point. The model works because each service is valuable on its own, but stronger in combination.

Accreditations

Credentials confirmed by independent bodies and vendor programmes.

Cyber Essentials

Lorem ipsum dolor sit amet, consectetur adipiscing elit, sed do.

Cyber Essentials Plus

Lorem ipsum dolor sit amet, consectetur adipiscing elit, sed do.

ISO 3

Lorem ipsum dolor sit amet, consectetur adipiscing elit, sed do.

Organisations we protect

Real outcomes from real engagements. See how organisations across the UK have strengthened their security posture with Softcat.

Modernising Customer Experience

Oxfordshire County Council partnered with Softcat and Zoom to transform its outdated contact centre into a modern, multi-channel platform.

Watch case study

Managed security solution

Waterford City and County Council partnered with Softcat to strengthen its cyber security, safeguard critical data, and ensure service continuity for over 127,000 residents and businesses.

Read case study

Device estate refresh

Softcat supported Blaby District Council in transforming its ageing device estate as part of a wider ICT modernisation programme, helping improve user experience, strengthen digital capability, and enable cultural change across the organisation.

Discover more

Guide?

Read our guide on Cyber Management services to find out...

Lorem ipsum dolor sit amet, consectetur adipiscing elit, sed do eiusmod tempor incididunt ut labore et dolore magna aliqua. Ut enim ad minim veniam, quis nostrud exercitation ullamco laboris nisi ut aliquip ex ea commodo consequat.

Download guide

Technology partnerships

Softcat works with security vendors across the market. Recommendations are based on what fits the environment, not a restricted product set.

View all Partners

Speak to our Cyber Services experts

Get in touch

Frequently asked questions

Common questions about Softcat Cyber Services, from managed detection and response through to advisory assessments and accreditations.

What is MXDR and how is it different from traditional managed security?

MXDR stands for Managed Extended Detection and Response. Traditional managed security forwards alerts for internal teams to investigate. MXDR analysts detect, investigate, and take containment actions across the full environment. Softcat's MXDR is Microsoft-verified.

What security frameworks do Softcat assessments cover?

Assessments align to NCSC CAF, NIST CSF 2.0, CIS Controls v8, NIS2, DORA, and Cyber Essentials Plus. Each produces a maturity score, gap analysis, and prioritised roadmap.

What happens during a security incident?

Softcat provides active incident response during live security events, covering forensic investigation, containment, and recovery. When incidents need infrastructure rebuild, Softcat's broader technology business mobilises hardware and restores platforms.

Do we need to use all of Softcat's cyber services together?

No. Each service works independently. Some organisations start with an assessment and progress to managed services. Others begin with MXDR. The services are stronger in combination, but the entry point depends on priorities.

Does Softcat have its own Security Operations Centre?

Yes. Softcat operates a UK-based SOC staffed by specialist security analysts. The SOC provides 24/7 threat detection, investigation, and response. Analysts operate at 60% capacity to ensure availability for priority incidents.

Can Softcat help if we already use Microsoft E5 but have not activated the security features?

This is a common starting point. Many organisations have paid for Sentinel, Defender XDR, and Entra ID through E5 licensing but lack the skills to configure and run them. Softcat's MXDR activates and operates these tools as a managed service.

How does Softcat differ from specialist cyber security firms?

Softcat combines verified cyber credentials with the breadth of a full technology provider. Specialist firms typically cover detection and consulting. Softcat also manages infrastructure, sources hardware, and rebuilds environments after major incidents.

What accreditations does Softcat hold for cyber security?

Softcat holds Microsoft-verified MXDR status, MISA membership, five Microsoft designations including Security, and is an NHS SBS Cyber Security Framework supplier across all three lots. CREST accreditation is in progress.