They offer three different engagement levels with the Sophos team. We can choose full engagement, where Sophos takes immediate action upon detecting a threat, but this doesn't offer much learning opportunity for our team. Alternatively, we can opt for a middle-ground approach, where Sophos reports the threat to us and assists our team in handling it. This model allows our team to learn and gain experience from the Sophos experts. The third option involves Sophos solely reporting the threat to us, leaving the resolution in our hands. It is important that our team doesn't become entirely dependent on it, but to work alongside the Sophos team to intercept threats and gain a deeper understanding of where these threats originate. It's a collaborative effort to enhance our skills and knowledge about potential threats.