New Gen SIEM Tool development

What we have done:

We have developed from our US MSSP client a reliable, fast and easy-to-use solution for Security Analysts and CISOs which helps to collect, per-process and forward logs for further analysis.

Its main benefits:

• a remote tool works with distributed systems monitoring and scanning.
• maximum secure: uses exotic protocols as LDAPS for monitoring and Kerberos for authentication and the common line.
• the implemented modules detect incidents by monitoring environment, network, and users.
• our Secure Incident and Event management Tool helps to do an incident investigation with dissolvable agents.
• the communication is performed with Virtual Appliance through VPN tunnels using encapsulation.