|
| |
|
|
|
|
|
Information Security Services and Solutions
eIS³ |
|
| |
|
Security Information and Event Management (SIEM) |
| |
Security Information and Event Management (SIEM) is driven by customer needs to analyze security event data in real time for threat management and to analyze and report on log data for security policy compliance monitoring.
SIM provides reporting and analysis of data from host systems and applications as well as security devices to support security policy compliance management, internal threat management and regulatory compliance initiatives. SIM also supports the monitoring and incident management activities of the IT security organization, and supports the reporting needs of the internal audit and compliance organizations.
SEM improves security incident response capabilities. SEM processes near-real-time data from security devices, network devices and systems to provide real-time event management for security operations. SEM helps IT security operations personnel be more effective in responding to external and internal threats.
|
 eIS³ SIEM is an Open Source Software (OSS) solution based on more than
15 leading OSS products. The solution provides a cost-effective way to
deeply monitor and understand your organisation's IT infrastructure. It provides a way to get more information than you have ever had before in
real-time and integrates deeply into other point solutions for a consolidated grasp over a network infrastructure.
Solution Functionality
 Detection
Integrated sensors assist in
anomaly and threat detection through passive scanning using the first-in-class Snort™ Intrusion Detection System. Active scanning technologies such as Nessus™ and NMAP allow for active vulnerability detection
as well as network monitoring and profiling through Arpwatch, p0f and NTOP.
Collection
Logs and other security related information can be collected through various devices. The built-in plug-in support over thirty-five (35) different leading products and is
fully customisable. Leading Host IDS solutions such as OSSEC and SNARE are also fully integrated and assure detection down to the host level.
Correlation
Three different types of correlation are provided to help identify security events occurring in an enterprise.
Asset classification and inventory is brought into play to reduce the number of false positives that can be generated through such a system.
 Reporting
A highly customisable dashboard is provided to allow clients to monitor the metrics that truly matter to their organisations.
Web-based and PDF reports are available on network, security and vulnerability issues.
Management
Clients are able to take decisions based on real-time risk-based metrics. The system can also launch
automated responses and notifications when certain conditions are met. Policies can be centrally managed and incidents can be centrally tracked
from creation to resolution.
Compliance Monitoring
The dashboard can provide
real-time executive summaries on critical assets. Organisational
compliance policies can be centrally tracked and monitored. |
|
|
| Implementation Services |
| |
| eIS³ will provide the necessary expertise and training to fully deploy our OSS solutions. We can offer a full range of services that include: |
| |
|
|
Solution Architecture; |
|
|
Project Management; |
|
|
Professional Implementation Services; |
|
|
Training. |
|
| |
| Support Services |
| |
| All of the eIS³ solutions are supported by eIS³ and its partners. Customers can leverage the expertise of a large group of dedicated security professionals with an in-depth understanding of the technologies and challenges that our solution addresses. |
| |
| Remote Management Services |
| |
| Not all customers want or need to develop their own in-house expertise for the solutions that we offer. eIS³ can manage and monitor all of our solutions remotely, decreasing turn-around time when incidents arise as well as saving our customers in having to develop their own in house expertise. |
| |
| Customisation Services |
| |
| One of the most powerful aspects of deploying OSS is that an organisation does not have to align its business or infrastructure to a specific technology. OSS is highly customisable and scalable. eIS³ offers a full suite of expertise to allow our solutions to fit our customer's needs. |
| |
| |
