How LW Secure Uses Petra to Deliver MSSP-Grade M365 Protection Their Partners Can't Match
Petra Security: ITDR 2.0 for MSPs and their clients.
LW Secure is a pure-play MSSP serving as the embedded security team for MSPs and internal IT departments across the Southeast. Rather than competing with MSPs, LW Secure partners with them, building, managing, and running the full security stack on their behalf, from awareness training through zero trust and ITDR.
Petra is MSP and MSSP-only. To get best-in-class cyber services (including Petra) delivered by a security-first MSSP, visit https://lwsecure.com.
The Challenge
LW Secure has to deliver security outcomes that their MSP partners can't achieve on their own.
When MSPs hire LW Secure, they are looking for a security team that operates at a level they can't reach on their own. Many of them already use an ITDR solution like Huntress, and aren't looking for yet another tool.
That sets a specific bar for every software solution LW Secure evaluates: it has to do something their partners couldn't get from their existing security stack. Every new tool gets tested head-to-head in a live environment.
When Chad, Founder of LW Secure, met the Petra team at a conference, his reaction was measured.
"When y'all were talking through it, I'm like, yeah, yeah, yeah…I've heard this story before." - Chad Sizemore, Founder, LW Secure
Then he put it in the environment, side by side with their existing ITDR solution, Huntress.
The First Live Test
When the first live incident occurred, Petra caught and contained it in 8 seconds.
LW Secure deployed Petra into a live client environment alongside their existing stack: Microsoft alerting, ThreatLocker, and Huntress ITDR. In its month of testing, Petra ran quietly with zero false positives.
"I tested you guys for a month. Didn't have any false positives from you guys. So you're building a much bigger peace of mind for me in those scenarios." - Chad Sizemore, Founder, LW Secure
Then a user at one of the protected tenants clicked a phishing link and handed over credentials.
Here's what happened next:
- Microsoft audit logs: Delayed by 3 minutes
- Petra: Detected 7 seconds after logs were published, and contained 1 second later. Total time to containment: 8 seconds.
- Huntress ITDR: Detected the attack 7 minutes after Petra
"I'm paying a lot of money elsewhere for things that aren't functioning correctly. You guys caught something in 8 seconds. I'm having a very different conversation with those vendors than I'm having with you." - Chad Sizemore, Founder, LW Secure
Forensic Depth
What used to take LW Secure 2-3 hours to investigate an incident now takes seconds.
Petra's speed was only part of the story. LW Secure was blown away by the forensic depth that Petra offers, noting that it saves their team hours per incident. They had not expected this level of detail from any tool.
"I was not expecting you to be able to tell me this user clicked an email from this sender, titled that subject. Huntress has never been able to give me the email, the subject, or the URL that was clicked the way you did." - Chad Sizemore, Founder, LW Secure
Before Petra, surfacing the source email on a compromise took their team one hour on the low end, two or three realistically, and sometimes they never found it. With Petra, the email, sender, subject, click count, and containment actions were all readily available immediately.
Automated Remediation
Petra's response came with full remediation of the incident built in.
Petra's ability to automatically remediate the incident end-to-end has been the biggest happy surprise for LW Secure since adopting the product. Email remediation after a compromise used to be a painful, time-consuming manual process. Now LW Secure has remediation and forensics handled within seconds of an attack, with no effort required by their team.
"As much as I was blown away by the forensics piece, I think I'm more blown away by [the remediation]. Not only did you immediately revoke sessions and lock the account, now I know what was clicked, and you've already remediated it with a hard delete on those emails. I thought that would be a manual process we'd have to do. There's no other tools doing this." - Chad Sizemore, Founder, LW Secure
The Growth Motion
Petra Scan as the door-opener for new MSP partners.
A persistent challenge for LW Secure's sales team was that most MSPs don't know they have a problem. They have an ITDR solution already, they trust it, and they have no way to surface what their current tool has missed.
Now LW Secure leverages the free Petra Scan as a prospecting tool to show MSPs what they are missing.
"One of the things I love about what you guys are offering is an easy step in the door I've never been able to do before. I can run this tool for free and tell [prospects] if they've had any issue in the last six months, and if they have, exactly what was accessed. That's a step I've never been able to do easily. And six out of ten times, you're going to find something. That's awesome." - Chad Sizemore, Founder, LW Secure
"You've got a damn good product, a damn good team, and you do what you say. Under-promise, over-deliver. Y'all have taken that ability and run with it." - Chad Sizemore, Founder, LW Secure
–
LW Secure is a pure-play MSSP serving as the embedded security team for MSPs and internal IT departments across the Southeast. Chad Sizemore and team build, test, and run the full security stack, from awareness training through zero trust and ITDR, so their MSP partners can deliver best-in-class cyber to their clients.
To get best-in-class cyber services (including Petra) delivered by a security-first MSSP, visit https://lwsecure.com.
.svg)
.webp)
