Sign in
Your Saved List Partners Sell in AWS Marketplace Amazon Web Services Home Help


IBM Security X-Force Threat Management (XFTM) Service provides 24/7 monitoring and investigation of alerts produced by AWS Security Partner SIEM technologies as well as alerting and incident response capabilities.

The convergence of IT with cloud-native security, OT and IoT domains requires integrated cybersecurity. XFTM NIST-based approach integrates insight, detection, investigation, and response for threats across your AWS environments, traditional IT, and unmanaged and connected devices at scale. The IBM Security platform ingests security information from many AWS native controls including GuardDuty, CloudTrail, SecurityHub, Network Firewall, Detective and others.

XFTM provides clients with visibility across their AWS cloud and hybrid environment and proactive management of threats with consistent, reliable outcomes. Our cloud-based managed service leverages AWS cloud-native security capabilities to provide a SOAR-powered (Security Orchestration, Automation and Response) workflow for end-to-end threat management across AWS and hybrid cloud environments.

Globally available with regional delivery capabilities, XFTM can be packaged to provide market-leading consulting and systems integration, offensive security, incident response, cloud security and managed security services aligned to the NIST CSF to help clients programmatically grow and transform enterprise security operations.

Additionally, XFTM can be packaged to include other key IBM managed security services functions for AWS:

  • AWS Infrastructure Vulnerability Scanning
  • AWS Resources Inventory Visibility
  • AWS Security Best Practices Monitoring
  • AWS Compliance Monitoring
  • Managed Network Intrusion Detection/Prevention System (IDS/IPS)
  • Managed Detection and Response for AWS Endpoints
  • Distributed Denial of Service (DDoS) Protection
  • Managed Web Application Firewall (WAF)

XFTM services can vary both in duration and engagement type.** Actual fee will vary depending upon scope.** Recurring managed security services fees typically start between $10,000-$30,000 US. Each customer’s requirements and maturity are uniquely considered to determine the applicable approach, which may consist of:

  • Cloud security consulting services to assess and develop your AWS and hybrid cloud strategy
  • Consulting services for the assessment, design, implementation and alignment of AWS native security services with enterprise security operations
  • Design and build of AWS and hybrid cloud security operations centers
  • 24/7 managed security services and managed extended detection and response solution over time

Start your X-Force Threat Management (XFTM) journey with IBM’s AWS Threat Management Assessment. IBM’s 3-day assessment identifies gaps in your AWS hybrid cloud security program and provides directional recommendations to improve security operations, incident response, compliance and governance.

Sold by IBM Security Services
Fulfillment method Professional Services

Pricing Information

Dimension Cost
Monitoring - Based on SIEM ingestion volume Contact seller for rate
Investigation - Based on number of alerts Contact seller for rate
Management - Based on number of SIEM devices Contact seller for rate


For Sales Support:

For Global Security Operations Center, 24x7, 365 days per year

  • Existing customers, please contact IBM Security MSS Virtual SOC Portal for existing MSS subscription customers with an existing IBM ID:

IBM Security Operations Centers for active support