managed network surveillance and remediation
24/7 MANAGED NETWORK SURVEILLANCE AND REMEDIATION
Deploying a Security Information & Event Management (SIEM) system enables an organization to have "eyes on the entire organization,” not just a wall around it (Firewall) or a locked safe within (End Point Protection). This platform is a highly effective tool to detect, deter, and defend against cyber-attacks
The SIEM monitoring platform aggregates and correlates security information and logs from the critical devices (servers, firewalls, and routers, switches) to detect cyber-attack patterns.
A team of US-citizen IT Security professionals monitors the security of your IT infrastructure 24/7/365. This team will follow incident response protocols and provide remediation recommendations when threats and vulnerabilities are detected. Software licenses and server appliances are provided as part of the monthly subscription rate.
PLANNING: We work to jointly identify and document the network subnets, network devices, and workstations that will be monitored
IMPLEMENTATION: Develop project plan for monitoring implementation and a schedule team for the initial deployment
BASE-LINING: Review of the project plan and securement of client support for the proposed implementation date
MONITORING & REPORTING: Installation and configuration of the SIEM monitoring platform to aggregate data from the selected devices in collaboration with client personnel utilizing a web conference as detailed in the project plan
Implementation Plan • Network IDS configuration • Enterprise SIEM solution • Agent or agentless host integration • 24/7/365 Days a year support in US-based Security Operations Center (SOC) • Alarm escalation in accordance to customer preferences • Lab support for threat analysis and forensic investigation • Maintenance and updates of the appliance • Weekly and monthly security operations reports • Customer Manual • Compliance reports including PCI DSS, HIPAA and ISO 27001 Deliverables.