Asset categorization assistance

Assist finalization based on asset category and business critically provided by customer integrate with SIEM solution

​

SIEM Implementation and Configuration
Rack mounting of SIEM devices and network configuration setup for SIEM components

​

Log Source Integration with SIEM
SIEM integration with identified and approved log sources such as Windows server, Unix server, network and security devices and other sources

​

Run Book / SOP Definition
Security incident management process. Standard operation procedure and defining daily, weekly and monthly status reports

​

Security Event Analysis, Investigation, Notification and Reporting
In-depth analysis of security events, notification about the events to relevant stakeholders and incident reporting to the user group; blacklisting and whitelisting of websites, user access management and malicious website threat analysis

Correlation Rule Development
Defining and developing correlation rules under different categories such as reconnaissance, denial of service, malicious code, and unauthorized access, customized around industry and regulations