Others alert you.
We fix it.
A white-label 24/7 SOC that doesn’t just notify. It acts, disabling accounts, isolating hosts and blocking IPs. No analysts to hire, no data caps, no direct sales. Just predictable MRR and clients who stay.
Vijilan is a 100% channel-exclusive, 24/7 managed SOC for MSPs and MSSPs. Partners white-label two flagships: ThreatRespond™ (works with any EDR) and ThreatDefend™ (powered by CrowdStrike Falcon), both billed per user and backed by a SOC that contains threats, not just alerts. New partners start free with a CrowdStrike-powered external attack surface assessment (just a domain required) and a 90-day Vijilan Guard™ NFR, with no credit card. Vijilan never sells direct.
See what attackers see. Free.
Our free external attack surface assessment maps every internet-facing application, service and asset tied to a domain, plus the vulnerabilities on them, using CrowdStrike’s exposure intelligence. It is the same engine behind ThreatDefend™, run as a no-obligation scan you can use to open any door.
- Just a domain name to start, with no agent to install
- Publicly-facing apps, services and assets, mapped
- Real, prioritized vulnerabilities your prospect can act on
- White-label findings you present as your own
- No credit card, no commitment
- A natural on-ramp to a paid ThreatRespond™ or ThreatDefend™ tier
// run it on a prospect’s domain to win the deal, or your own to see your exposure
Start your free assessment
All we need is a domain. No agent to install.
100% channel.
100% partner-first.
We don’t sell direct. Your client is your client, full stop. Our entire business is making yours bigger.
Most vendors notify you and hand back the work. Our SOC actively contains threats: it disables compromised accounts, isolates hosts and blocks malicious IPs.
Portal, dashboards, executive reports and alert emails, all on your domain, brand and color palette. Always your brand, on every tier.
ThreatLog™ SIEM is included with no per-GB fees. Flat per-user MRR you can model, with no ingestion surprises at month-end.
Keep your existing EDR with ThreatRespond™, or run our managed CrowdStrike Falcon stack with ThreatDefend™. No rip-and-replace required.
A dedicated onboarding engineer per tenant, then a named Customer Success Manager who knows your book, not a ticket queue.
SOC 2 Type 2 and ISO 27001 evidence packs ready for your end-client audits. HIPAA, PCI, NIST and CMMC supported.
One SOC.
Two flagships.
Whether your clients already own their security stack or want you to bring it, the same 24/7 Vijilan SOC stands behind every seat. Both flagships are billed simply, per user.
Vendor-agnostic XDR across 6 security domains. Works with any EDR your clients already run, with no rip-and-replace, and ThreatLog™ SIEM and ITDR included with no data caps.
Best when clients already own EDR and you want to layer a 24/7 SOC on top.
Explore ThreatRespond™Fully managed mXDR powered by CrowdStrike Falcon. Full ITDR and dark web monitoring from day one, automatic endpoint isolation, and a SOC that acts on every tier.
Best when you want one managed, full-stack endpoint and identity program to standardize on.
Explore ThreatDefend™Tiers that build on each other.
Pick the depth each client needs.
Every tier is white-label, billed per user, and includes our 24/7 SOC. Move a client up a tier as their risk and budget grow. Pricing is shared through your Partner Portal, never published.
ThreatRespond™ · your tools, our SOC
Full breakdown →- Works with ANY existing EDR, no rip-and-replace
- 24/7 SOC monitoring across all 6 security domains
- Active Directory, Entra ID and M365 monitoring
- ThreatLog™ SIEM with no data caps or per-GB fees
- PSA integration and white-label delivery
- Compliance-ready: HIPAA, PCI, NIST, CMMC
- ThreatContain™: SOC disables accounts, isolates hosts, blocks IPs
- Full ITDR: BEC, OAuth abuse, impossible-travel detection
- Dark web credential monitoring
- Okta and Google Workspace coverage
- Vijilan SOC proactive threat hunting (MITRE ATT&CK mapped)
- External attack surface management
- Custom detection and parser engineering
- CMMC L2 and SOC 2 audit evidence package
- Named concierge analyst
- Monthly threat-intelligence briefing
- Custom SLA and priority escalation
- Custom reporting development
ThreatDefend™ · our stack, our SOC
Full breakdown →- CrowdStrike Falcon EDR and NGAV, fully managed
- 24/7 monitoring with automatic endpoint isolation
- Full ITDR and dark web monitoring from day one
- ThreatLog™ SIEM with no data caps
- White-label delivery on every tier
- Vulnerability assessment (Falcon Spotlight)
- External attack surface management (Falcon Exposure)
- 15-minute SOC response SLA
- ThreatAssess™ 60-day complimentary assessment
- Vijilan SOC proactive threat hunting
- CrowdStrike OverWatch elite global threat hunters
- CMMC L2 and SOC 2 audit evidence package
- Named concierge analyst
- Dedicated concierge SOC team
- Custom SLA and priority escalation
- Custom detection engineering
Protect the assets that matter, too
Every bundle covers the security protections that matter most for each user. When a partner or client also needs to protect specific assets, firewalls and servers running critical applications such as Domain Controllers, file servers and database servers can be added for one low, flat monthly fee per asset.
// tier inclusions shown. Partner pricing is provided through your account manager and the Partner Portal
We protect
the protectors.
MSPs are the #1 target. An attacker who breaches you reaches every client. Run our real 24/7 SOC on your own organization, free for up to 90 days, and know the product cold before you sell it.
25 seats · ThreatRespond™ Essential · any qualified MSP · application and 48-hour approval
100 seats · ThreatRespond™ Advanced · MSPs with 50+ employees · qualification call and NDA
Why every partner starts with Guard
- No credit card and no commitment, apply in about 10 minutes
- The real 24/7 SOC, not a sandbox or demo tenant
- The SOC acts for your team exactly as it does for clients
- White-label from day one, always your brand
- Protect your own business, your weakest link is you
- Demo from lived experience, not slides
- Converts to a permanent NFR after your first paying client
- Grows with your partner tier automatically, with no lock-in
Volume pricing that scales.
Margins that grow with you.
Volume discounts apply automatically as your deployed seats grow. The bigger your book, the lower your per-user cost, with no renegotiation.
A flat per-user model with no data caps means predictable, recurring margin on every seat, and that margin widens as you move up the volume ladder.
Pay only for what you deploy, billed monthly. No per-client floor, no setup fees, and annual prepay available for additional margin.
// exact rates, discount thresholds and margins are shared under NDA through the Partner Portal
Three packages.
Pick what fits.
Every partner gets a dedicated onboarding engineer. These tiers determine scope and timeline.
- One tenant, up to 250 endpoints
- Standard data sources
- Live in about 3 business days
- Up to 10 tenants
- PSA and ticketing wired in
- White-label portal configured
- Live in about 10 business days
- Unlimited tenants
- Migration from existing MDR
- Custom dashboards and reports
- Executive QBR cadence
Partner questions,
answered.
Does Vijilan sell security directly to my clients?
No. Vijilan is 100% channel-exclusive and never sells direct. Your client relationship is yours; we operate the 24/7 SOC behind your brand.
What is the free external attack surface assessment?
A CrowdStrike-powered exposure assessment that maps your (or a prospect’s) internet-facing applications, services and assets and the vulnerabilities on them. All we need is a domain name. There is no agent to install and no credit card.
What is the difference between ThreatRespond and ThreatDefend?
ThreatRespond™ is vendor-agnostic: our 24/7 SOC works with any EDR your client already runs, with no rip-and-replace. ThreatDefend™ is our fully managed stack powered by CrowdStrike Falcon. Both are billed per user, both are white-label, and the SOC acts on threats rather than only alerting.
Does the SOC actually take action, or just send alerts?
It acts. Vijilan’s SOC contains threats directly, disabling compromised accounts, isolating hosts and blocking malicious IPs, instead of handing the work back to you.
What is Vijilan Guard?
Vijilan Guard™ is a free, not for resale (NFR) deployment of our real 24/7 SOC for your own MSP, for up to 90 days, with no credit card. Run the product on your own team, then convert to a permanent NFR once you sign your first paying client.
Do you publish pricing?
No. Partner pricing is consumption-based with volume discounts that scale automatically, shared through the Partner Portal and your account manager rather than published publicly.
How fast can I onboard a client?
Your first tenant can be live in about 60 minutes with a dedicated onboarding engineer. Larger multi-tenant rollouts and migrations from an existing MDR follow our Silver and Gold onboarding tracks.
Apply to the
Vijilan partner program.
Tell us about your book and we'll have a partner agreement, plus your free Vijilan Guard™ NFR, ready within one business day.
Apply to the
Vijilan partner program.
Tell us about your book and we’ll have a partner agreement, plus your free Vijilan Guard™ NFR, ready within one business day.