Weighted Decision Matrix SOCaaS

	A	B	C	D	E	F	G	H	I	J	K	L	M	N
1	Factor		[redacted]		Perch Security		[redacted]		[redacted]		[redacted]		[redacted]

2	Instructions: Add relevant items to the "Factors" column; Adjust the "Weight" column to how important each factor is (the multiplier); then add a number from 0-3 into the yellow "Rating" boxes. The spreadsheet calculates the score based on the weight and rating, then tallies the scores to their respective sections and sums them at the top.		Scale of 0-3 \| 0=Does not satisfy;1-2=Partial; 3=Fully Satisfies
3		Weight	208		254		164		218		191		164
4		Weight	Rating	Score	Rating	Score	Rating	Score	Rating	Score	Rating	Score	Rating	Score
5	Integrations (your core technology stack)			17		17		5		17		17		11
6	Active Directory	3	3	9	3	9		0	3	9	3	9	3	9
7	Office 365 (user and object-based monitoring)	3		0		0		0		0		0		0
8	G Suite (user and object-based monitoring)	3		0		0		0		0		0		0
9	Fortinet	3		0		0		0		0		0		0
10	Scan/Monitor cloud services (IaaS: AWS, GCP, Azure)	3	2	6	2	6	1	3	2	6	2	6	0	0
11	Atera	2	1	2	1	2	1	2	1	2	1	2	1	2
12				0		0		0		0		0		0
13				0		0		0		0		0		0
14				0		0		0		0		0		0
15				0		0		0		0		0		0
16				0		0		0		0		0		0
17				0		0		0		0		0		0
18				0		0		0		0		0		0
19				0		0		0		0		0		0
20				0		0		0		0		0		0
21	Specific Features/Functionality			75		80		57		60		86		36
22	Multitenancy (not separate setup & maint per client)	4	0	0	3	12		0	3	12	3	12	2	8
23	Syslog: capture/store/accept	3	3	9	3	9	3	9	0	0	3	9	0	0
24	Alert SLA (how quickly we're notified)	3	3	9	3	9	2	6	3	9	3	9	1	3
25	Alert quality (few false positives; helpfulness of content/context)	3	3	9	3	9	3	9	2	6	3	9	1	3
26	24/7/365 SOC	3	3	9	3	9	3	9	2	6	3	9	0	0
27	Remediation: Full-service	1	0	0	0	0	0	0	0	0	2	2	0	0
28	Remediation: Partial (auto-interrupt, escalates to us for remediation)	3	0	0	0	0	0	0	3	9	1	3	0	0
29	Remediation: Guidance-only (but reachable for assistance)	2	2	4	3	6	3	6	2	4	2	4	1	2
30	Supports Linux (whether agent or agentless)	1	1	1	1	1	0	0	1	1	1	1	1	1
31	Supports Mac (whether agent or agentless)	1	1	1	1	1	0	0	1	1	1	1	1	1
32	Supports Windows (whether agent or agentless)	3	3	9	3	9	0	0	1	3	3	9	2	6
33	SIEM component	3	3	9	1	3	1	3	0	0	3	9	0	0
34	Monitors firmware versions	1	0	0	0	0	0	0	0	0	0	0	0	0
35	Monitors host-based vulnerabilities (not indicators of compromise)	1	0	0	0	0	0	0	0	0	0	0	0	0
36	Vulnerability scanning (internal)	2	0	0	0	0	0	0	0	0	0	0	2	4
37	Vulnerability scanning (external IPs/services/apps)	1	0	0	0	0	0	0	0	0	0	0	2	2
38	Compliance reporting (HIPAA, PCI, etc)	3	3	9	2	6	3	9	1	3	3	9	2	6
39	North American based SOC team	2	3	6	3	6	3	6	3	6	0	0	0	0
40				0		0		0		0		0		0
41				0		0		0		0		0		0
42	Cost/Value			46		66		50		46		22		53
43	Fit for <25 users	3	2	6	3	9	3	9	1	3	0	0	3	9
44	Fit for 26-300 users	3	3	9	3	9	2	6	2	6	1	3	3	9
45	Fit for >300 users	1	1	1	3	3	3	3	3	3	3	3	2	2
46	Fit for low-maturity customers	3	3	9	3	9	3	9	3	9	0	0	3	9
47	Fit for high-maturity customers	2	1	2	3	6	3	6	1	2	3	6	1	2
48	Low upfront cost (I could finance it for them)	2	3	6	3	6	3	6	2	4	0	0	3	6
49	Low recurring cost (adding a service they're not used to paying for)	4	2	8	3	12	1	4	2	8	0	0	3	12
50	Demo / Proof of Value (Is there one? How long does it last?)	2	0	0	3	6	3	6	3	6		0	0	0
51	Completeness of offering / "single-source-provider"	2	1	2	0	0	0	0	0	0	3	6	0	0
52	Customer Admin capabilities to self-manage	1	0	0	3	3		0	3	3	1	1	2	2
53	Vendor Longevity/Stability/Vision	1	3	3	3	3	1	1	2	2	3	3	2	2
54				0		0		0		0		0		0
55				0		0		0		0		0		0
56				0		0		0		0		0		0
57				0		0		0		0		0		0
58				0		0		0		0		0		0
59				0		0		0		0		0		0
60	Use, Administration			8		11		0		12		11		9
61	Minimal complexity for what it is (maintenance, upgrades, changes)	3	2	6	3	9		0	3	9	3	9	2	6
62	Standardized billing output (CSV acceptable; API preferred)	1	2	2	2	2	0	0	3	3	2	2	3	3
63				0		0		0		0		0		0
64				0		0		0		0		0		0
65				0		0		0		0		0		0
66				0		0		0		0		0		0
67	MSP Friendliness			62		80		52		83		55		55
68	Ease of deployment / Simple client network configuration	2	2	4	3	6	2	4	3	6	1	2	2	4
69	Quality of partner portal / sales training resources / marketing content	2	3	6	1	2	1	2	2	4	1	2	1	2
70	Quality of technical training materials and mediums	3	2	6	3	9	1	3	3	9	1	3	2	6
71	Sales collaboration (someone to help make the sale / presentations)	3	3	9	3	9	3	9	3	9	3	9	0	0
72	Channel-only	1	1	1	0	0	3	3	0	0	0	0	0	0
73	Flexibility to scale up/down (month-to-month over annual contracts)	2	3	6	3	6	1	2	3	6	2	4	3	6
74	Time to deploy (how fast can it be stood up?)	3	2	6	3	9	3	9	3	9	1	3	2	6
75	Layers synergistically with an incumbent IT group or MSP	4	0	0	2	8	1	4	3	12	1	4	2	8
76	Generates customer touch-points (adviser status)	2	3	6	3	6	2	4	2	4	2	4	3	6
77	Simple pricing model (not nickel-and-diming for myriad components)	2	1	2	3	6	2	4	2	4	3	6	3	6
78	Whitelabeling (co-branding = point)	1	1	1	1	1	3	3	3	3	3	3	3	3
79	Can reach real person for support (phone preferred)	3	3	9	3	9		0	3	9	3	9	1	3
80	Onboarding (quality, completeness)	2	3	6	3	6	2	4	3	6	3	6	1	2
81	Option for customer to manage / co-manage the service	1	0	0	3	3	1	1	2	2	0	0	3	3
82				0		0		0		0		0		0
83				0		0		0		0		0		0
84				0		0		0		0		0		0