SIEM
Surveillance system and intrusion detection
FortiSIEM technology and Microsoft Azure Sentinel
Cybersecurity: a vast perimeter to defend, played on multiple chessboards.
To always be ahead of IT threats, we constantly monitor event logs and the performance of your IT infrastructure. Our SOC (Security Operation Center) classifies these events, analyzes them, and initiates remediation processes according to the level of priority.
Our solution adapts and connects to most technologies on the market to ensure the collection of maximum information and the protection of all your assets.
The collectors are installed in your systems, collect the information, and send it to our SIEM which then takes care of the analysis, correlation, and alerts.
Our solution adapts and connects to most technologies on the market to ensure the collection of maximum information and the protection of all your assets.
The collectors are installed in your systems, collect the information, and send it to our SIEM which then takes care of the analysis, correlation, and alerts.
What does SIEM mean?
It is an acronym of the English expression “Security Information & Event management” whose French version is GIES (Gestion des Informations et des Evénements de Sécurité), an artificial intelligence (AI) system using predefined rules or statistical correlation to determine whether there are links between different event logs to detect unusual or potentially dangerous network activities.
Advantage
As an organization, you should be able to continue to be at your best today and build your future with peace of mind. We take care of the cyber threat and its harmful consequences for the conduct of your business.
The strength of our service
Whether it is our internal algorithms developed to investigate the Dark Web or those carefully selected by our partners, cyber intelligence remains at the heart of our cyber security practice.
The strength of our team
Our extended in-house team is made up of over 50 top experts who globally support multiple technologies and hold multiple certifications.
CONSOLIDATE / UNDERSTAND / REMEDY
IT threat detection service
Incident Response
Monitoring suspicious activity on workstations, servers, and network equipment
Compliance reports
Monitoring your information on the Dark Web continuously
Monthly meeting with a security expert
SIEM Managed Security Service
Comparison of managed SOC / SIEM services
Service | Description | Base | Advanced |
---|---|---|---|
Security event management | Management and monitoring of security events | ||
Monthly report | Monthly report and dashboard that summarizes events by category | ||
Incident management | Setting up the right playbooks for your business to handle incidents | ||
8/5 Alerts | 8/5 communication of High Category Alerts | ||
24/7 Alerts | 24/7 communication of High Category Alerts | ||
Multi-Manufacturers Collector | Our solution connects to the majority of technologies on the market | ||
Event archiving | Archive of medium- and long-term events | ||
Multi-level alerts | Multi-level alerts on data movements, atypical behaviors, deviations, and geolocation | ||
AI analysis | Use of machine learning to continuously improve responsiveness to the different identified behaviours | ||
Integration API | SIEM has a REST API that allows any external system to integrate into the CMDB, make event queries and send alerts | ||
Automation of actions | The majority of actions can be automated through use cases and scripts | ||
Monthly Vulnerability Report and Meeting | A report and a meeting with a cybersecurity expert to discuss identified events and recommendations | ||
Quarterly Report and Vulnerability Meeting | A report and a meeting with a cybersecurity expert to discuss identified events and recommendations | ||
Dark Web monitoring | Continuous monitoring of your credentials (passwords) on the Dark Web |
Don’t wait for a cyberattack to target you!
Hackers won’t wait, contact us to protect you before it’s too late.