Log monitoring is vital to an effective information security program. Monitoring the activity occurring across your security infrastructure and critical information assets enhances the overall return on your investments, while enabling you to quickly identify and thwart malicious activity. In addition to its value as a security function, many industry regulations now dictate log monitoring as a requirement. However, performing effective log monitoring is resource intensive and requires advanced technology to process all the logs and alerts being generated by your infrastructure.
With SecureWorks' Services, you choose the platforms where logs must be monitored (servers, security infrastructure, network components, etc.) and the service level you require (full management, monitoring or self-service). Reports are available through the SecureWorks Portal for all platforms and service levels where you can use built-in workflow to capture signatures for audit purposes.
SecureWorks' Log Monitoring solution delivers:
- 24x7x365 alert and log monitoring
- Advanced correlation
- Immediate incident response
- On-demand reporting
Part of a Comprehensive Security Service Approach
SecureWorks' Security Management Services provides expert administration and monitoring of your firewalls, network intrusion prevention and detection infrastructure and host intrusion prevention systems. Additionally SecureWorks offers a bundled network intrusion prevention appliance and service using our advanced, iSensor® IPS technology. As part of our Security Management Services, our Security Analysts will monitor the alerts from these devices in real-time. This provides you with leading-edge protection without any of the overhead necessary to maintain these devices.
SecureWorks' Security Monitoring Service provides real-time monitoring across your security infrastructure and critical hosts. SecureWorks' advanced Security Management Platform can monitor alerts from virtually any security device and logs from operating systems, applications or databases in real-time. Monitoring can be tailored to your exact requirements and escalation procedures are customised to your internal policies. SecureWorks' Security Analysts will investigate and respond immediately to any malicious activity detected, keeping your critical information assets safe from harm.
SecureWorks' Self-Service Security provides you with Security Information Management on-demand. This allows your organisation to self-monitor your environment to identify malicious activity before damage is done. Our Security Information Management service leverages the advanced SecureWorks Security Management Platform to aggregate and correlate security events to present your organisation with prioritised information to facilitate rapid analysis. Providing this solution as a service eliminates the up-front and maintenance costs associated with similar software solutions.
Reporting
SecureWorks provides comprehensive reporting that makes it easy for you to see the activity occurring throughout your environment. Reports are easily generated and accessed from the secure, web-based SecureWorks’ Portal, the industry's leading client interface. The Portal allows you to easily measure the effectiveness of your security environment and generate log monitoring reports to demonstrate provable security to auditors for compliance with industry regulations.
