|
|
Overview
The number and complexity of Internet-based threats is steadily rising, as are insider attacks and information theft from within the organization.
Companies have deployed a number of security solutions at the perimeter, like firewalls and intrusion prevention systems, but need global visibility and centralized intelligence to identify and mitigate new, sophisticated and complex threats.
AlienVault provides the industry's most complete and integrated Information Security Management Solution offering near real-time surveillance, control and decision support enterprise wide.
The solution features:
- Low level, near real-time detection of known threats and anomalous activity
- Compliance automation
- Network, host and policy auditing
- Network behavior analysis and profiling
- Log management
- Intelligence that enhances the accuracy of threat detection
- Risk oriented security analysis
- Executive and technical reports
- A scalable high performance architecture
The Complete Managed Security Solution
The AlienVault solution offers a holistic and scalable response to the most critical challenges of the cycle of continuous security improvement.
AlienVault SIEM Technology offers advanced intelligence, capable of synthesizing and graphically displaying the underlying risks associated with complex distributed attacks on extensive networks.
The system considers the context of each threat and the importance of the assets involved, evaluates situational risk, discovers blended threats, and distinguishes actual threats from the thousands of false positives that are produced each day in each network.
The AlienVault SIEM Solution may be divided into three main functional areas that together form a complete and scalable solution:
Security Management
The SIEM analyzes large volumes of information in near real time, detecting and responding to threats that affect the organization. It also offers powerful risk reporting and management tools to address these incidences.
More about AlienVault SIEM
Log Management (Logger)
The Logger gathers information from devices deployed at any point in the network such as firewalls and routers, and stores these logs en masse ensuring their admissibility as evidence in a court of law.
More about AlienVault Logger
Security Detection and Monitoring
AlienVault sensors, deployed across the network, perform low level analyses of all traffic detecting, auditing and analyzing the context in which threats are produced. AlienVault probes are unique in the depth and breadth of data collection and protection they provide.
More about AlienVault Sensors
The AlienVault SIEM offers a unique approach to compliance:
Compliance Automation
AlienVault Professional SIEM (OSSIM) includes a Compliance Module that helps companies monitor and report on the controls implemented in accordance with regulatory compliance issues related to Information Security.
More about AlienVault Compliance
The AlienVault solution is frequently used as a compliance control mechanism:
Security Operation Center
The AlienVault SIEM is often deployed as the core security component of enterprise networks. Adherence to corporate policy can be centrally monitored by setting up a Security Operation Center with AlienVault SIEM; and thus the security status of each department and office may be overseen and audited from a single point.
MSSP
AlienVault offers a complete solution for MSSPs and other managed service providers who wish to incorporate information security into their offerings. AlienVault’s MSSP solution includes the seamless integration of management systems, SIEM, and low level detection technology.
AlienVault sensors can be placed transparently in clients’ networks where they can collect events for continuous, remote management and monitoring without any perceptible impact on the clients’ networks.
More about MSSP
|
|
|
Request More Information
