Managed Event Correlation Service
The Managed Event Correlation and Incident Management Service (MSS-SIEM) is a “Security as a Service” (SaaS) offering to provide visualization of data from various customer specified sources, turning it into actionable intelligence for alerts and incident response reports. Together with the GLESEC Orchestration platform, this service integrates security information from endpoints and servers with other sources to increase trust, reduce time to mitigate, and eliminate blind spots.
How does it work?
Turnkey, security as a service. The service is provided both on-premises and as a cloud option and works by linking a number of previously identified sources with the customer to capture information from these sources and send it to GLESEC (either the collector on the GMSA device or the collector on GLESEC IDC). GLESEC Professional Services work with the client to configure the information record capture and data classification. The collected information is displayed on various panels. They are specific to the type of information obtained. GLESEC Operations follows established Playbooks for incident response management.
GLESEC's approach to threats begins with the RISK of critical assets to identify vulnerabilities and threats and then delve into each one for remediation and investigation is comprehensive and unique.
Sergio Heker, CEO
The benefits of this service are:
This service can be classified according to the following table:
Each of the MSS services can be mapped to one of the seven elements of the 7eCSM.
In this case the mapping is:
Take control of your cyber-security now!
Comments are closed.