ips

Co-managed Security Information and Event Management (SIEM) PDF Print E-mail

IPS' Co-Managed SIEM solution is based on award winning products from Enterasys and NetIQ.  It combines best-of-breed Security Information and Event Management for network, security, and host based systems. The managed solution is administered and monitored by the IPS Network Operation Centre.  As part of our service offering, IPS is responsible for the ongoing maintenance and support of the customer premises equipment.  Customers receive proactive alerting of security events, and monthly security event log reports.

Benefits of our co-managed SIEM solution:

  • Collects and combines network activity data, security events, logs, vulnerability data, and external threat data into a powerful management dashboard.  It then intelligently correlates, normalizes, and prioritizes the data, greatly improving remediation and response times and enhancing the effectiveness of IT staff.
  • Tracks extensive logging and trend information, and generates a broad range of reports for network security, optimization, and regulatory compliance purposes.
  • The Managed SIEM Solution will enable your IT staff to focus on actionable information rather than struggling to interpret the millions of daily events generated by network security appliances, switches, routers, servers, and applications.  We combine the best of SIEM and managed services in one solution.
  • Data Ownership and Integrity: All security log data remains on the client premises at all times, providing maximum security of potentially sensitive content.  The SIEM appliance is installed on-site, and the customer has full control over the equipment and access privileges to the device.  No remote storage or off-shoring.
  • All-hours Coverage: 24x7 monitoring, management, and incident response. IPS service level agreements include first-level response and incident investigation with the IT staff as required.
  • Support for Internal Source Devices: Co-Managed SIEM is ideally suited for today’s compliance-oriented requirements, as it provides support for data collection and analysis from internal assets, such as network devices, operating systems, databases, and applications. 
  • Total Cost of Ownership (TCO): The TCO of co-sourcing is significantly less than that of a traditional MSSP over a multi-year period.  Co-management combines all the benefits of a tailored SIEM solution with the peace-of-mind of 24x7 coverage.

In addition, IPS currently offers the following managed services: