SIEM

SOCVue™ is a subscription service offering that enables security conscious organizations to have certified EiQ SOC Analysts remotely manage an on-premise SecureVue® deployment and obtain advanced security situational awareness via a best in class security information and event management (SIEM) solution.

IMPROVE YOUR SECURITY

Continuous Security Monitoring & Incident Management
Improve your network security posture through continuous monitoring and notification of security incidents that could impact business. Receive notifications of triggered alerts and guidance on how to remedy issues. Leverage the expertise of the EiQ Security Analyst Team for investigative analysis of an incident as needed with up to 2 requests per month included.


Security Reporting
Increase your awareness through periodic reporting of critical security controls, compliance concerns and security incidents. Security Posture Reports are sent on a daily basis making you aware of the specific areas of concern and guidance on what you should do to resolve the issues.


Compliance Automation
Get assistance from certified security professionals to assist meeting your compliance obligations around PCI-DSS, HIPAA, and other regulatory mandates.


Health Monitoring & Reporting
Ensure the health of your SecureVue implementation and event collection to ensure log management requirements are met. Gain piece of mind with Daily Health Snapshot Reports which provide insight when a managed node is no longer reporting into the solution and possible cause.


One-on-One Consultation
Meet regularly for review sessions with EiQ Security Analyst covering the previous month’s security concerns and overall system health.

 
WRC-Graphic-2500-x-2500_0000_Siem.png

SIEM USES

Use cases for SIEM
• Event Management
• Log Management
• Compliance
• Reporting
• Correlation
• Intelligent Security Search
• Threat Detection
• Real-Time Analytics
• User Activity Monitoring


Correlation Capabilities
• Event categorization Threat and anomaly detection
• Correlates all data
• Statistical correlation
• Rule based correlation
• Risk based correlation
• User behavior & profiling


Architecture
• One unified, fully integrated product
• Log Management
• Event Management / Correlation
• NBA
• IntelligentSecurity Search


Database Technology
• Purpose-built Non-relational database
• No DBA required
• Purpose- built
• Highly scalable


Data Type / Sources
• Log & Event data
• Network flow analysis
• NBA

 
 

IMPACT

Improve your network security posture through continuous monitoring and notification of security incidents that could impact business.

 

OUR PARTNERS

 

ONE-ON-ONE

Meet regularly for review sessions with EiQ Security Analyst covering the previous month’s security concerns and overall system health.