When security operations can’t stop, neither can your support.

Binalyze Support & Services packages deliver structured onboarding, expert-led deployment, and enterprise-grade coverage — from first deployment to your most critical investigation. Every customer starts with Essentials. High-stakes teams move to Signature.

Talk to our team View packages
Why services matter

The cost of a slow investigation is measured in hours of exposure.

Enterprise security teams using Binalyze AIR need more than software. They need a deployment that’s right from day one, and a team that’s reachable when it counts.

204DAYS

Average time to detect and contain a breach.

38%

Of incidents escalated due to misconfiguration at deployment.

60%

Reduction in investigation time with dedicated expert support.

Meet the experts

The team behind
your success.

Every Binalyze service engagement is backed by a team of investigators, architects, and engineers who have operated at the highest levels of enterprise security. This is the expertise behind your onboarding, your SOC workflows, your health checks, and critical support.

Lee Sult

Chief Investigator

Lee built and leads Binalyze’s CERT organization — the team of Forward Deployed Security Architects, Detection Engineers, and Solution Consultants at the intersection of customer operations and product development. He was the first Forward Deployed Security Engineer at Palantir, and later co-founded Horangi Cyber Security, acquired by Bitdefender. He began his career running high-stakes enterprise and government intrusion investigations alongside U.S. federal law enforcement.

Enterprise intrusion investigation · Forward-deployed security · program leadership

  • Co-Founder & CTO, Horangi Cyber Security (acquired by Bitdefender)
  • Author, Advanced Network Intrusion Investigation Course — NCFI & U.S. Secret Service
  • Former federal law enforcement collaboration on enterprise & government intrusion investigations

Jeremy Leasher

Forward Deployed Security Architect

Jeremy brings over 25 years of cybersecurity experience across the Department of Defense and civilian sectors. A retired U.S. Army Chief Warrant Officer 3 (Information Protection Technician, 255S), he served over two decades in Defensive Cyber Operations before directing DFIR programs in the private sector. At Binalyze, he embeds with customers in their most complex and high-stakes deployments.

DoD & enterprise security · incident response · Defensive Cyber Operations

  • Former Director, Digital Forensics & Incident Response — Redpoint Cyber
  • Former Lead Security Architect — AutoZone
  • Former Security Professional — Y-12 National Security Complex

Craig Guymon

Director, Solutions Engineering

Craig leads Binalyze’s global Solutions Engineering team, bringing over 15 years of specialized experience in incident response and digital forensics. He has worked extensively with U.S. federal agencies, law enforcement, enterprise organizations, and MSSPs — architecting DFIR programs and leading complex technical engagements across Fortune 1000 companies, government entities, and state and local agencies. Craig focuses on translating complex technical challenges into clear, practical, actionable solutions.

SOC Workflow Integration · Platform Deployment at Scale · Enterprise and Government Deployments

  • Background spans Magnet Forensics, Nuix and others
  • Education in Criminal Justice and Information Technology

Jeff Hamm

Forward Deployed Security Architect

Jeff brings more than 25 years of experience spanning law enforcement, digital forensics, incident response, and cybersecurity consulting across global enterprises and government organizations. He has led ransomware, insider threat, and nation-state investigations, directed incident response programs at Mandiant, Wipro, and DCSO, and advised CISOs, legal teams, and executive leadership during complex cyber incidents. Jeff is a co-author of Digital Forensics (Wiley, 2017) and has taught digital forensics and incident response at the master’s level.

Critical Incident Response · Digital Forensics · Ransomware & Nation-State Investigations · Executive Cyber Advisory

  • Technical Director, Mandiant — Global Incident Response and Digital Forensics
  • Consulting Partner, Wipro — Cyber Incident Response and Resilience Services
  • Business Director, DCSO — National Incident Response Capability Development
  • Assistant Professor, NTNU — Master’s-Level Digital Forensics Education
Packages Available

Support built for defenders,
not ticket queues.

Essentials is included with every new Binalyze subscription: structured onboarding, guided deployment, and business-hours support as a standard foundation. Signature Support is built for enterprise teams where platform availability is mission-critical and response time is measured in hours, not days.

— Included with every subscription

Essentials

Get deployed right and supported through your first year.

The standard foundation every Binalyze customer starts with.

  • 1 business day P1 response, 2 business days P2
  • Guided deployment & configuration
  • Initial training (2 sessions) & knowledge base access
  • Software updates for term & Voice of Customer program
Talk to our team Get More Details
★ Recommended for Enterprise
— Mission-critical, 24/7

Signature Support

Built for teams that can’t afford to find problems the hard way.

Contractual SLAs, dedicated CSM, proactive health checks, and services hours.

  • 2-hour P1 response, 4-hour P2 response — contractual
  • Dedicated Customer Success Manager & Quarterly Business Review
  • Quarterly proactive health checks & early feature/beta access
  • Up to 10 services hours per year & 2 custom integrations
Talk to our team Get More Details
Feature Essentials Signature Support
Support coverageBusiness hours24/7 · 365 days
P1 response time1 business day2 hours (24/7)
P2 response time2 business days4 hours (24/7)
SLA guaranteeBest effortContractual
Ticket routingStandard queuePriority routing
Guided deployment & configuration
Initial training (2 sessions)
Knowledge base access
Software updates for term
Voice of Customer program
Dedicated Customer Success Manager
Proactive health checksQuarterly
Executive Business ReviewQuarterly
Early feature & beta access
Annual services hours allowanceUp to 10 hrs / year
Custom integration support2 custom integrations / automations
SLA Response Times

Response when it
matters most.

Business hours: Monday–Friday, 9:00am–6:00pm CET, excluding public holidays. P1 response time is defined as first human acknowledgement, not resolution time. SLA clock starts on Service Request submission.

Priority SeverityDescriptionEssentialsSignature
P1Critical
Platform down / core unavailable
1 business day
2 hrs · 24/7
P2High
Non-core function impaired
2 business days
4 hrs · 24/7
P3Medium
Minor issue, workaround available
3 business days
1 business day
P4Low
Informational / enhancement request
5 business days
2 business days
Additional services

Need something beyond the packages?

Essentials and Signature Support are designed to cover the full lifecycle of operational support — from deployment through ongoing investigation readiness. For environments with more complex requirements, the following engagements are available as separate services.

Get More Details
— 01

Advanced Implementation

For organizations with complex environments, custom architectures, or non-standard deployment requirements. Includes custom integrations, bespoke configuration, and architecture consulting outside the scope of standard deployment.

  • Non-standard or air-gapped architectures
  • Bespoke configuration and workflow design
  • Onsite delivery available
— 02

Additional Training

Instructor-led training sessions beyond the two included. Sessions are tailored to team level, use case, and environment. Available as remote or onsite delivery.

  • Remote session: Available
  • Onsite visit: Available, travel & expense billed separately
— 03

Investigation & Response Assist

Dedicated investigation support and incident response engagements for active or retrospective incidents. Led by Binalyze CERT — the same team of Forward Deployed Security Architects behind Signature Support. All engagements delivered during business hours.

  • Active incident scoping & investigation support
  • Retrospective compromise assessment & root cause analysis
  • Available standalone or drawn from Signature services hours
— 04

Onsite Delivery

Implementation, training, and investigation support delivered at your location. Available for customers requiring in-person engagement for deployment, sensitive environments, or high-stakes incident response.

  • Onsite implementation and configuration
  • In-person training for analyst & leadership teams
  • Travel and expenses billed separately
— 05

IR Consultation & Retainer

For organizations requiring ongoing or on-demand incident response capability beyond the Signature Support services hours allowance. Structured as a separate engagement — not a package add-on.

  • Open-ended incident response retainer engagements
  • On-demand DFIR consultation for active investigations
  • Available through Binalyze partner network for 24/7 investigation delivery
Get started

Let’s get you the right fit.

To add Essentials or Signature Support to your subscription, speak with your Account Manager or reach out directly. We’ll help you identify the right fit for your team and environment.

Get in touch

Talk to our team