Security

SIEM

SOC (Security Operations Center) MS is a service of monitoring the security of selected IT areas of the client (infrastructure, IT systems and applications). A dedicated team analyzes events in the Client’s IT systems 24/7/365, using SIEM (Security Information and Event Management) by leading manufacturers.

A key of element of this service is incident notification – the person responsible with IT systems management at the Client’s organization are instantly notified about emerging threats and security breaches. Immediately after identifying a security incident we take action on it. The action can be notifying the specified infrastructure administrators at the Client’s organization, or other actions according to established procedures. If desired, we can also take over the process of handling discovered incidents within the Client’s infrastructure.

 
Who is it for?


For mid-sized and large organizations that do not have their own teams for monitoring and managing ICT security.

 
Benefits:

constant 24x7x365 monitoring and identification of security incidents in the IT infrastructure,

immediate notification about incidents for the persons responsible for IT systems management at the Client’s organization,

additional actions that can be undertakes as specified depending on the security incident type,

flexible pricing thanks to possibility of on-site implementation or as a service model depending on customer's needs,

lower total cost because there is no need to invest in specialized infrastructure.

 
Range of service

Analysis of the Client’s needs and creation of a monitoring solution architecture.

Delivery and installation of necessary hardware and software (monitoring probes).

Integration of systems to be monitored as specified by the Client, using standard connectors available for the selected SIEM solution.

Optionally: integration of systems to be monitored as specified by the Client using custom-built connectors.

Implementing event monitoring procedures delivered by the Client.

Basing training regarding the implemented solution for specified administrators of the Client’s infrastructure.

Start of monitoring and providing the service.

SOC / SIEM consulting services. Support in selection process, expertise in the field of SOC / SIEM, assistance in construction of safety monitoring procedures and processes.