What is an LLM vulnerability scanner?

An LLM vulnerability scanner sends batteries of adversarial probes — jailbreaks, prompt injections, PII extraction attempts, harmful-content requests — at a target LLM and grades the responses. The output is a vulnerability + optimization report with per-probe evidence, severity, and a prioritized fix list.

Which LLMs can I scan with FilterPrompt?

OpenAI, Anthropic, Google Gemini, Azure OpenAI, plus any OpenAI-compatible endpoint — Ollama, Groq, Mistral, Together AI, OpenRouter, Perplexity, Hugging Face, vLLM, or your own custom endpoint. Bring your own keys per tenant.

What kinds of vulnerabilities does FilterPrompt test for?

Jailbreaks (DAN, role hijack, translation smuggling), direct and indirect prompt injection, system-prompt extraction, harmful-content compliance, PII / secret leakage, bias & fairness, RAG poisoning, agent/tool abuse, output quality, and robustness — categories map to the OWASP LLM Top 10.

How are probes graded?

Each probe declares an evaluator: regex match, refusal-check, contains-check, or an AI judge (Gemini 3 Flash). Pass/fail comes with severity, category, the exact prompt sent, the model's full response, and the evaluator's reason — fully auditable.

How much does a scan cost?

1 credit per probe executed. New accounts get 1 welcome credit on signup. Pay-as-you-go credit packs after that — credits never expire. Connecting LLMs and creating tenants is free.

Cyber Security Services Company Comparison 2026

Comparison · 2026-05-18 · 14 min read · FilterPrompt Security Team

Compare the leading cyber security services companies, MSSP vs MDR providers, SaaS security specialists, and cyber security IT companies for 2026.

Choosing the right cyber security services company is now harder than choosing the underlying tools. The market has split into MSSP, MDR, MXDR, vCISO, and SaaS security specialists — and the labels overlap in ways that confuse procurement. This comparison covers the leading providers in 2026, their service models, what to look for in a cyber security IT company, and how SaaS security specialisation differs from general managed security.

Service categories defined

MSSP — managed security service provider

Traditional model. The MSSP operates your security infrastructure (firewall, SIEM, endpoint) and forwards alerts to your team for triage. Lower cost, less outcome-oriented. Examples: AT&T Cybersecurity, NTT Data, Wipro.

MDR — managed detection and response

Outcome-oriented. The MDR provider owns detection and response on your endpoints, identity, and increasingly cloud — they investigate, contain, and remediate without you triaging first. Examples: Red Canary, Arctic Wolf, Expel, Sophos MDR, Huntress.

MXDR — managed extended detection and response

MDR extended across endpoint, network, cloud, identity, and email under one analytical engine. Higher cost, broader coverage. Examples: Palo Alto Unit 42 MXDR, CrowdStrike Falcon Complete.

vCISO — virtual chief information security officer

Fractional CISO services for organisations without a full-time security executive. Examples: Cynomi, Fractional CISO firms, large MSSPs' advisory arms.

SaaS security specialist

Cyber security services companies focused specifically on protecting SaaS-app stacks (Salesforce, Microsoft 365, Workday, Snowflake) — including OAuth grant analysis, SaaS-to-SaaS data flow monitoring, and identity sprawl. Examples: AppOmni, Adaptive Shield (now Crowdstrike), Obsidian Security.

Top 8 cyber security services companies in 2026

Red Canary — best-in-class MDR for endpoint, strong investigation narrative, mid-market and enterprise. Pricing $4–$8 per endpoint/month plus base fee.
Arctic Wolf — broad MDR with SIEM-style coverage, mid-market focused, strong customer reviews. Pricing $8–$20 per user/month.
Expel — MDR with SaaS-friendly tooling, transparent dashboards, mid-market. Pricing $8–$15 per asset/month.
Sophos MDR — bundled with Sophos endpoint, strong SMB value, 24/7 SOC. Pricing $4–$7 per endpoint/month.
Huntress — pragmatic MDR for SMB and MSP partners, strong on persistence detection. Pricing $3–$6 per endpoint/month.
Palo Alto Unit 42 MXDR — enterprise MXDR built on Cortex XDR, strong incident response. Custom pricing.
CrowdStrike Falcon Complete — fully managed Falcon, premium MDR. Pricing premium over Falcon licence.
AppOmni — SaaS security specialist for Salesforce, Microsoft 365, ServiceNow. Pricing per SaaS app per year.

MSSP vs MDR: which to choose

The pure-MSSP model is fading. Alert forwarding without ownership creates a 'who is responsible?' problem during incidents. MDR providers own outcomes — they will isolate an endpoint, revoke a token, or quarantine an email without waiting for your approval (within agreed playbooks). For organisations under 5,000 employees without a 24/7 SOC, MDR is almost always the right choice. For large enterprises with mature in-house SOC, an MSSP for tier-1 with in-house tier-2 and tier-3 can be more cost-effective.

SaaS security: a separate problem

SaaS security has become its own discipline because the attack surface (OAuth grants, third-party integrations, SaaS-to-SaaS data flows) is invisible to traditional EDR and SIEM. A SaaS security company like AppOmni or Obsidian sits in front of your top SaaS apps, monitors configuration drift, and flags risky third-party grants. If your business runs on Salesforce, Microsoft 365, or similar, a SaaS security specialist is now table stakes alongside endpoint MDR.

How to evaluate a cyber security IT company

Request reference customers in your industry and at your size
Validate the SOC location, staffing model, and analyst tenure
Read the service-level agreement carefully — MTTR, MTTC, escalation paths
Run a 30-day trial against actual production telemetry
Validate the post-incident report quality on a sample incident
Check the integration story with your existing EDR, SIEM, and IdP
Negotiate pricing with a 12-month commit and a clear off-ramp

FAQ: cyber security services questions

What is the average cost of an MDR service?

$4–$20 per endpoint or user per month, plus a base fee for SOC engagement. A 1,000-employee organisation typically spends $80K–$250K annually on MDR.

Do I still need an in-house security team if I use MDR?

Yes — for governance, vendor management, security engineering, and high-severity decision-making. MDR replaces tier-1 and tier-2 SOC; it does not replace security leadership or programme ownership.

How long does MDR onboarding take?

4–8 weeks typically. Endpoint deployment is fast; tuning detection rules to your environment takes 30–60 days before steady-state operations.

Conclusion

MDR has consolidated the cyber security services company market. SaaS security specialists are the rising adjacency. AI-application security services (managed AI red teaming, runtime AI guardrails) are the newest category — most cyber security IT companies do not yet offer it credibly.