Frequently Asked Questions
What Does SureStack Do?
SureStack automatically and continuously monitors security tools for mis-configurations and vulnerabilities, and notifies security teams of issues that could compromise the security of their environment.
What types of tools does SureStack integrate with?
We support popular EDRs, SIEMs, firewalls, cloud platforms, identity providers, ticketing systems, and more—including tools like CrowdStrike, SentinelOne, Okta, Azure, AWS, Splunk, and ServiceNow. Custom integrations are also supported.
What makes SureStack different from traditional vulnerability scanners or SIEMs?
SureStack focuses specifically on configuration health and control effectiveness, not just log data or endpoint vulnerabilities. We detect misconfigurations, monitor drift, provide AI-driven remediation guidance, and integrate with your tools—not replace them.
What types of misconfigurations does SureStack detect?
SureStack detects misconfigurations across a broad range of security tools and cloud platforms, including but not limited to:
- Disabled or misapplied EDR/AV policies
- Insecure IAM policies or overly permissive roles
- Logging disabled or not forwarding to SIEM
- Incomplete MFA enforcement
- Unencrypted traffic paths or disabled TLS settings
- Default Admin credentials
- Drift from CIS Benchmarks, Zero Trust policies, or baselines
- Improper integration between tools (e.g., misaligned alerting thresholds or missing ticketing automation)
Each misconfiguration is risk-scored and mapped to known frameworks or compliance standards for fast triage and remediation.
What is StackChat?
StackChat is our AI-powered cybersecurity assistant. It helps teams troubleshoot misconfigurations, understand vulnerabilities, get guided remediation steps, and accelerate onboarding of new analysts—all through conversational AI trained on your stack.
What does SureStack cost?
Pricing is flexible and based on usage tiers (e.g., number of tools monitored, tenants, and users). We offer enterprise licenses, MSSP tiers, and pilot programs. Contact our team for a custom quote.
Can SureStack help remediate issues automatically?
Yes. While current remediation is assisted through AI-driven guidance and StackChat, future releases will include optional self-healing capabilities that automatically fix common misconfigurations or orchestrate fixes via your existing tools.
How fast can we deploy SureStack?
Deployment takes minutes. SureStack integrates via simple APIs, agentless connections, or lightweight connectors. Most customers see insights in under 30 minutes.
Do you support multi-tenant environments (e.g., MSSPs or large enterprise divisions)?
Yes. SureStack was built as a multi-tenant application from the ground up. You can segment insights by customer, business unit, geography, or any logical boundary—while managing everything through a single pane of control.
Can SureStack be MSSP or OEM-integrated?
Yes. SureStack is OEM- and MSSP-friendly. Our API-first architecture and modular design allow partners to embed our capabilities into their platforms, portals, or workflows. We offer co-branded go-to-market packages for MSPs, MSSPs, and ISVs looking to extend their value with advanced configuration visibility and AI-powered guidance.
How does SureStack help with compliance and audit readiness?
SureStack maps misconfigurations and vulnerabilities to common frameworks and requirements like NIST 800-53, CIS Benchmarks, Zero Trust Maturity Models, NIST 800-171, and EO 14028 requirements. You can generate reports, track drift over time, and document your improvements.
Is SureStack FedRAMP or DoD-compliant?
SureStack supports compliance with U.S. government security standards. While we are not yet FedRAMP authorized, we offer deployment options (cloud, hybrid, on-prem) aligned with federal use cases, and our platform is built with Zero Trust and CDM-aligned capabilities in mind. We attained our ISO 27001:2022 certification in 2025 and plan to undergo a SOC2 Type 2 Audit in early 2026.
How does SureStack handle data privacy and security?
SureStack is designed with security-first principles. We collect only the metadata necessary to assess configuration health and never ingest sensitive content or customer data. All data in transit and at rest is encrypted using FIPS-validated cryptography. Access is tightly controlled using role-based access controls (RBAC), audit logging, and, when required, integration with your identity provider (IdP). SureStack can be deployed in your environment, in the cloud, or as a hybrid—giving you full control over your data.
We currently cover a number of security products, including SonicWall, Palo Alto and Fortinet firewalls, Crowdstrike and Trellix, but our list of integrations is constantly evolving. Contact Us for a current list of integrations or to request one you’d like to use in your environment.”