How The AME Group Wins with Petra

133 Attacks Stopped with Petra.
In just 144 days across clients.
56 Seconds
Mean time-to-contain (MTTC) with Petra.
90 Hours/Month
Billable Hours Reclaimed
“From our standpoint, it’s a big competitive advantage. It’s autonomous, it’s really quick, and it gives so much helpful information.”
Larry Brock
The AME Group

Petra Security: ITDR 2.0 for MSPs and their clients.

Trusted by fast-growing MSPs to catch what other products miss.
Learn More
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.

Since 1985, The AME Group has been assisting clients to maximize their revenue, reduce expenses, and reduce risk using a portfolio of award-winning IT solutions and experienced staff. 

The AME Group is also part of Lyra Technology Group––a family of industry-leading technology service businesses.

The AME Group has more than 25 offices and operates nationwide. Whether it be in a small office of 5 employees or a conglomerate with 10,000+ employees, The AME Group helps you focus on what’s most important: your business.

Petra is MSP-only. To get best-in-class Microsoft 365 account-compromise protection through a world-class MSP with excellent support, visit https://www.theamegroup.com/ or call 1-800-264-8851.

--

By the Numbers

Results (August 2025 - January 2026)

  • 133 BEC attacks caught with Petra (true positives).
  • 6 total false alarms (false positives).
  • 96% precision across incidents.
  • Average response time: 56 seconds.
  • Max response time: 4 mins, 12 seconds.
  • 129/139 incidents have had response time under 1 minute.

The Challenge

Pre-Petra, BECs had become the majority of attacks.

Larry Brock, VP of Service at The AME Group, found Petra at an XChange conference in August 2025. 

After a rigorous evaluation, The AME Group decided to augment their security stack with Petra as the standard for all clients.

M365 monitoring was nothing new to The AME Group, they’d been ahead of the curve on stopping BECs for their clients.

“These attacks matter. I mean, they’re the majority of how a client is going to get hit. So, we decided a while back to go ahead and bundle in M365 monitoring to our base stack", says Larry.

“We pride ourselves on a great security stack that’s also a great value for our clients. We take a lot of time to make sure all of the components of that stack are right for our clients.”

The Forensic Results

Petra Autopsy showed some attacks had been caught 7-8 days late by prior ITDR.

“I was shocked when we did the Petra trial.”

“I had thought our tools were pretty solid to begin with. We’d been using SaaS Alerts and a custom setup with Elastic on top."

“But, after some deep analysis by our security team, we found that some compromises were being caught 7-8 days late by those tools.”

Larry talks about how The AME Group launched a focused evaluation to find something both faster and clearer for Microsoft 365 compromises—the attacks that most often impact AME’s customers.

“So, we did the hard work. We did the research and evaluation. Seeing those 7-8 day delays uncovered by [Petra] Autopsy––and I mean, we hadn’t even known about them, because the previous tools had said 10 or so minutes––it kicked off a big mission on our team––to figure out what we should be using to protect our clients and make whatever new tool we decide to use a competitive advantage [for our MSP]”

“Our clients know that we’re going to be at the top of the game, protecting them better than anybody. We had to put in the work to figure out the right solution. After a whole lot of evaluation, we found our way to Petra.”

As part of that thorough evaluation, The AME Group ran Petra by both the incumbents and other ITDR tools they were considering to help their customers.

Quickly, it was clear they had found the right solution. 

Attacks caught only with Petra

Petra Live Monitoring then caught attacks that were missed by their prior ITDR

“We did a side-by-side evaluation, and Petra caught some attacks that the other tools missed entirely, and caught all those attacks in under 5 minutes. We’re known by our clients for being reliable, for being there for them. [That side-by-side evaluation] just made it clear––this is what’s going to help us be there for our clients.”

"We also knew that other MSPs aren’t necessarily being as innovative, they’re not spending as much time making sure that they’re on top of today’s attacks. We knew that we could make protection with Petra a competitive advantage and pass that advantage along to our clients.”

Operational Improvements

With an easy deployment, Petra is already making a huge difference.

“Once we decided to go with Petra…", says Larry, "I can’t say enough good things about that deployment. All very slick and easy, especially compared to what we’d done before. Minimal effort. Obviously, it takes a little bit of time, but as far as integrating new tools go, that was definitely the easiest we’ve done in a while.”

The AME Group deployed to more than 300 tenants over the course of a day. Petra handled baselining for all 300 tenants dynamically, and produced just 2 false positives as the baselines were being created.

Petra now pairs with AME’s best-in-class security team to deliver an incredibly fast MTTR, less business disruption than other MSPs, and much quicker remediation for clients.

“From our standpoint, it’s a big competitive advantage. It’s autonomous, it’s really quick, and it gives so much helpful information.”

Larry also talks about how it helped their team on the Operations side:

“Operationally, we think we’re probably saving 3 or more hours a day.”

“And we’re now training folks on our help desk who can respond quickly to use the product and do what we’d previously need senior engineers to do, which costs us 50-60% less on an hourly wage standpoint. And we can have those senior engineers focus on the work that uses their expertise and really helps clients.”

Larry sums it up like this:

“Petra, paired of course with our great security team’s unique expertise, is a big part of how we provide such great security outcomes to our clients. We’re stopping attacks in under 5 minutes and showing clients lots of helpful detail about exactly what happened, and how we can help that client prevent those attacks in the future", says Larry. "Our clients get a great outcome, and it’s also a great venue for us to show off to clients the unique security expertise we’re known for.”

And Larry emphasizes how it strengthens trust with The AME Group’s clients: “It engenders a certain amount of trust, you know? Some clients just take it for granted now, they know, ‘you guys got my back’. It’s something we’re proud of. That’s how good our security stack is.”

“From our standpoint, it’s a big competitive advantage. It’s autonomous, it’s really quick, and it gives so much helpful information.”

--

The AME Group has more than 25 offices and operates nationwide. Whether it be in a small office of 5 employees or a conglomerate with 10,000+ employees, The AME Group helps you focus on what’s most important: your business.

To get best-in-class Microsoft 365 account-compromise protection through a world-class MSP with excellent support, visit https://www.theamegroup.com/ or call 1-800-264-8851.

Location
Switched From ...

Explore More Case Studies

How BNMC (A New Charter Company) used Petra to Stop a CEO Attack Missed By SaaS Alerts
Read Case Study
How M-Cubed Stopped 7 Attackers Missed By Huntress ITDR
Read Case Study
How IntrusionOps Landed 3 Enterprise Deals With Petra
Read Case Study
How The AME Group Wins with Petra
Read Case Study
How CyberStreams Made Cyber Their Competitive Differentiator with Petra
Read Case Study
How AlignLayerNine Took Reporting from Hours –> Minutes with Petra
Read Case Study

ITDR 2.0 for MSPs and their clients.

Trusted by fast-growing teams to catch what others miss.
Schedule Demo
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.