Darktrace Advances AI-Native Managed Email Security for MSSPs, Enhancing Protection Against Evolving Threats

In a significant move within the cybersecurity landscape, Darktrace has unveiled its inaugural managed security service tailored specifically for Managed Security Service Providers (MSSPs). This offering empowers partners to deliver AI-native email security services built on the renowned Darktrace / EMAIL solution, which facilitates real-time detection, investigation, and response across the entire email and messaging ecosystem.

Addressing the Growing Threat Landscape

The launch of this managed service comes at a time when email threats are becoming increasingly sophisticated. Cybercriminals are now employing generative AI to create more convincing and personalized social engineering campaigns. According to an analysis of 32 million phishing emails detected across Darktrace’s global customer base in 2025, AI-assisted phishing techniques surged from 32% to 38% year-over-year. This trend underscores a shift toward longer, more targeted attacks designed to bypass traditional defenses. Darktrace’s research indicates that approximately 17% of email threats manage to evade Secure Email Gateways but are still identified by its AI-driven systems.

As the complexity and speed of email threats escalate, many organizations—particularly smaller businesses with limited security resources—are increasingly relying on MSSPs for support. These providers play a crucial role in extending advanced cybersecurity capabilities, yet managing multiple customer environments at scale presents operational challenges. Analysts must sift through large volumes of alerts while ensuring consistent detection and response. Darktrace’s new offering aims to make enterprise-grade AI email security accessible to a wider array of organizations by enabling MSSP partners to deliver Darktrace-powered protection as a managed service.

Enhancing MSSP Capabilities

Feras Tappuni, CEO and Founder of SecurityHQ, a global managed security service provider, highlighted the necessity for security operations to evolve beyond traditional alert monitoring. He emphasized the importance of combining global threat intelligence, advanced AI-driven detection, and human expertise to enhance security performance. Tappuni noted that technologies like those offered by Darktrace facilitate faster detection and deeper investigation across complex environments, thereby improving organizational protection and providing security teams with the clarity needed to respond effectively.

To meet the rising demand for effective protection at scale, Darktrace has introduced an AI-native managed email security capability built on its industry-leading Darktrace / EMAIL solution. This capability extends protection across the entire email ecosystem, collaboration platforms such as Microsoft Teams, user identities, and sensitive data. Darktrace / EMAIL has been recognized as a leading email security solution, earning accolades such as being named a Leader in the 2025 Gartner Magic Quadrant for Email Security Platforms and a 2025 Gartner Peer Insights Customers’ Choice for Email Security Platforms.

Features of the New Offering

Darktrace’s managed email security service allows MSSPs to deliver AI-native protection across various platforms, including email and collaboration tools. Powered by Self-Learning AI, the system continuously adapts to the normal communication patterns of every user and organization it safeguards. This dynamic approach enables the identification of subtle behavioral anomalies that may indicate early-stage threats, such as phishing, business email compromise (BEC), or account takeover (ATO).

The service encompasses advanced messaging and identity security capabilities, including AI-driven threat detection across email and Microsoft Teams, integrated data loss prevention (DLP), and DMARC monitoring to prevent sensitive data loss and domain impersonation. Additionally, it offers behavior-driven security training through Darktrace / Adaptive Human Defense. Collectively, these features are designed to detect and contain advanced threats, prevent data exfiltration, thwart spoofing and impersonation attacks, and bolster user resilience against social engineering.

Through this MSSP-ready model, partners can:

• Deliver continuous, real-time detection and containment of advanced email threats.
• Automate investigation and prioritization using AI to minimize manual triage.
• Maintain consistent protection across multiple customer environments.

Bob Keblusek, Chief Innovation and Technology Officer at Sentinel Technologies, a premier IT services provider and leading MSSP, remarked on the effectiveness of Darktrace’s AI-driven approach in combating advanced threats. He noted that Darktrace has consistently pushed the boundaries of innovation in cybersecurity, making it a natural fit for building a managed security practice around their technology. The new managed services model enables Sentinel to extend Darktrace’s advanced capabilities to more customers, enhancing their protection against evolving threats while alleviating operational burdens.

Streamlining Operations with ActiveAI Security Portal

To further support partners operating across diverse customer environments, Darktrace has enhanced its ActiveAI Security Portal. This platform unifies control, configuration, and visibility across all Darktrace deployments. The newly introduced SOC Alert Triage Dashboard offers multi-tenant visibility and AI-driven alert investigation and triage capabilities, allowing analysts to manage incidents and coordinate responses from a single interface. This streamlining of operations is crucial for service providers aiming to accelerate response times and improve operational efficiency.

Mathias Schick, Business Manager Security at Bechtle, one of Europe’s leading IT service providers, emphasized that customers today prioritize outcomes over standalone security tools. He noted that many mid-market organizations lack the financial and operational capacity to manage complex security environments independently. By integrating Darktrace’s technology into their managed services portfolio, Bechtle can deliver a comprehensive, automated security offering that reduces friction for customers while enhancing protection against increasingly sophisticated threats.

Expanding the Darktrace Defenders Partner Program

In tandem with the launch of its managed email security service, Darktrace is expanding its support for MSSPs within the Darktrace Defenders Partner Program. This initiative provides partners with greater flexibility to build and scale their security services. The program introduces a framework designed around partner needs, allowing organizations to engage as resellers, service providers, or fully managed security providers.

Key features of the program include:

• Flexible commercial models tailored for MSSP business structures.
• Scalable deployment paths that accelerate time-to-value.
• Co-selling, enablement, and go-to-market support to assist partners in expanding their services.
• Unified management capabilities that simplify operations across customer environments.

This adaptable model enables partners to grow their services business at their own pace while unlocking new recurring revenue opportunities.

Dan Monahan, Chief Partner Officer at Darktrace, stated that partners are at the forefront of helping organizations defend against increasingly sophisticated cyber threats. By expanding MSSP capabilities within the Darktrace Defenders Partner Program and introducing AI-native email security services, Darktrace is facilitating the delivery of innovative AI-powered protection as managed services. This initiative aims to help partners protect customers, scale their operations, and unlock new revenue opportunities.

According to publicly available securitymea.com reporting, the introduction of Darktrace’s managed security service offering marks a pivotal development in the ongoing battle against evolving email threats, providing MSSPs with the tools they need to enhance their security capabilities and better serve their clients.

For the latest cybersecurity developments, threat intelligence and breaking updates from across the Middle East: Middle East