Skip to content

SenseOn Scoping Questions

This document is used by SenseOn to determine the scope and scale of a potential deployment. It is used to develop detailed pricing so the scope of potential integrations and the technology requirements are correctly identified.

Universal Sensor Scoping

End user devices (e.g. laptops or desktops)

  1. How many end user devices are there?
  2. What Operating Systems are in use for end user devices?
  3. What deployment tools are in use for end user devices? (e.g. InTune, SCCM, Jamf Pro etc.)
  4. Do you use any Virtual Desktops (VDI)?
    • What technology are you using for VDI, and is this for applications or full desktops?
    • What are the average daily numbers of online VDIs?
    • Are these included in the total number of end user devices above?
  5. What endpoint security product are you using?

Servers

  1. How many servers are there?
  2. What Operating Systems are in use for servers? How many are there of each type?
  3. What deployment tools are in use for servers? (e.g. InTune, Ansible, Terraform, SCCM etc.)

Device Configuration

  1. Are any devices configured to use proxy servers? How are they configured (e.g. PAC file)?
    • Can applications be allowed to bypass the proxy if necessary?
    • Who is responsible for proxy configuration?
  2. Is TLS interception being used for any devices/part of the network?
    • Who is responsible for configuring TLS interception?

Integration Scoping

Identity and Office Platform

  1. Do you use Microsoft Office 365?
    • How many users have licences and what is the subscription level? (e.g. E3, E5 etc.)
  2. Do you use Google Workspace?
    • How many users have licences and what is the subscription level? (e.g. Business Plus, Enterprise Standard etc.)
  3. What identity platforms are you using? (EntraID, On Prem AD, Hybrid EntraID/AD, Okta, Ping Identity etc?)

Security Tooling

  1. What are you currently using for your Anti Virus or EDR?
  2. Are you considering SenseOn's anti Virus or EDR or are you looking for us to integrate with another provider?
  3. What are you currently using for log management, do you have a SIEM?
  4. What other security tools are you looking for us to integrate with?

Cloud Environments

  1. Are you using any Containers, if so how many and what architectures do they use?
    • How are the nodes managed and what is the technology? (e.g. EKS with EC2, EKS with Fargate, other)
  2. Are you using any serverless technologies, if so, please provide details.
  3. Are you using AWS?
    • Broadly, what are the technologies used in AWS and their scale?
    • Do you use AWS Guard Duty?
    • Do you use AWS Security Hub?
  4. Do you use GCP?
    • Broadly, what are the technologies used in GCP and their scale?
    • Do you use GCP Security Command Center?
  5. Do you use Azure?
    • Broadly, what are the technologies used in Azure and their scale?
    • Do you use Defender for Cloud.
  6. Are there any other cloud environments or services in use which are not described above?

Log Ingestion Scoping

  1. Do you currently use a SIEM?
    • What SIEM platform is in use?
    • Do you manage the analytics yourself or through a third party?
  2. Do you have a requirement for SenseOn to ingest raw logs?
    • What do you expect is the daily ingestion volume of logs in GB?
    • Could you provide details of the log sources and estimate volumes of the top sources in GB per day?
    • Do you require the ability to just store this data (lower cost, often for compliance or audit purposes) or run analytics and generate alerts from this data (higher cost)?
    • If you require analytics running over raw logs, what are the most important analytics?

Probe Scoping

SenseOn has network probes which can be deployed to locations where there is a significant deployment of legacy or Operational Technology (OT) systems.

  1. Is there a requirement to deploy stand alone network probes?
    • How many probes are likely to be required?
    • What environments will the probes be protecting?
    • What is the likely average sustained bandwidth (not link speed) of the network traffic for each probe?

Managed Services

  1. Are you looking to run the platform by yourself, or would you like SenseOn to manage it or a hybrid approach?
  2. Do you have any additional managed services requirements?

Additional questions

  1. Do you have any specific data retention requirements?
  2. Do you have a preferred partner who handles your security purchases?