SecuSIEM
Sovereign cloud SIEM for Quebec MSPs and regulated SMBs
SecuSIEM consolidates your logs, detects threats with Sigma rules + UEBA, and powers an orchestrated incident response. 100% hosted in Quebec, Law 25 compliant and powered by SecuAI for sovereign analysis.
- OVH Beauharnois— Canada 100%
- Sovereignty— Outside Cloud Act / FISA
- MITRE ATT&CK— native mapping
- SecuMon— integrated feed
- SecuAI— sovereign analysis
A modern SIEM, without Splunk costs or Elastic complexity
Splunk and Microsoft Sentinel are expensive and US-centric — exposed to the Cloud Act and FISA. ELK requires a dedicated team. SecuSIEM offers a managed, multi-tenant SIEM at an MSP-friendly price, hosted exclusively in Quebec and outside US jurisdiction.
Universal ingestion
Syslog, Windows Event, CloudTrail, Office 365, EDR, firewalls, K8s. Managed parsers for 80+ formats.
Correlation & detection
Sigma rules, MITRE ATT&CK mapping, UEBA machine learning. MSP-customizable managed detections.
Threat intel
Managed CTI feeds (AlienVault OTX, abuse.ch, Quebec CERT). Automatic alert enrichment.
Lightweight SOAR
Investigation playbooks, incident response runbooks, ticketing integration (Zammad, Freshdesk). SecuAI co-pilot.
Available today — roughly 80% of the roadmap shipped
- Unified SOAR detection — Sigma rules + second-line AI, cross-product MSP alert fan-in, self-serve MCP portal, AI prompt-injection detection.
- Multi-tenant MSP — Partner console, per-tenant isolation, white-label branding, threat intelligence and MITRE ATT&CK mapping.
- Next milestone — Advanced cross-source correlation and SOAR rollout in enforce mode.