Threat Detection

Included in MANAGED THREAT INTELLIGENCE


How confident are you in your company’s ability to monitor, detect, and respond to threats, anomalies, and vulnerabilities in your network?


We continuously detect security incidents that might otherwise go undetected…

→ System Compromise
→ Exploitation & Installation
→ Delivery & Attack
→ Reconnaissance & Probing
→ Policy & Environmental Awareness

…and provide remediation guidance




We help customers achieve their desired level of cyber security hygiene

SIEM & LOG MANAGEMENT

We aggregate, cross-correlate, and analyze your security event sources


Leveraging Security Information Event Management (SIEM), our security operations center is able to help clients aggregate all of their security log and event data from disparate services such as cloud apps, public cloud, private cloud or physical infrastructure into a into a single pane of glass.

INTRUSION DETECTION SYSTEM (IDS, FIM)

We can customize detection for any environment


Leveraging host intrusion detection (HIDS), network intrusion detection (NIDS), as well as cloud intrusion detection for public cloud environments including AWS and Microsoft Azure, enables us to detect threats as they emerge in your critical cloud and on-premises infrastructure

VULNERABILITY SCANNING

We identify potential vulnerabilities on your network


Network vulnerability scanning coupled with our security operations center (SOC) expertise, allows us to find the weak spots in your critical assets and provide your IT staff actionable remediation guidance to take corrective action before attackers exploit them to sabotage your business or steal your confidential data

AUTOMATED INCIDENT RESPONSE

We can take action on your behalf with security orchestration


Businesses have enough to worry about, and more than enough work to do.  With the right automated incident response tools, IT security teams can stay in control of their incident response (IR) activities and respond to threats and intrusions swiftly and effectively, with less manual work


All the benefits of a world-class SIEM, experts to configure and manage it, plus a Security Operations Center to monitor it 24×7

 

Managed Threat Intelligence (MTI) powered by Vertek

 

  
 
Baseline inventory scanning and asset registration
Baseline vulnerability environment scanning
Baseline event correlation, tuning and alarm trimming
Basic threat dashboard and report creation
SIEM tuning
Vulnerability Scanning
Critical Asset Monitoring
Network IDS Monitoring
Cloud Monitoring
Alarm Monitoring
Alarm Analysis
Remediation Guidance
Lifecycle Management
Service Review
Security Review

Managed Threat Intelligence
Managed SIEM and SOCaaS
Baseline inventory scanning and asset registration : Included
Baseline vulnerability environment scanning : Included
Baseline event correlation, tuning and alarm trimming : Included
Basic threat dashboard and report creation : Advanced
SIEM tuning : Continuously
Vulnerability Scanning : Weekly
Critical Asset Monitoring : Included
Network IDS Monitoring : Included
Cloud Monitoring : Included
Alarm Monitoring : SOC Coverage
Alarm Analysis : Included
Remediation Guidance : Included
Lifecycle Management : Included
Service Review : Monthly
Security Review : Standard or Premium

Reasons to outsource vs. insource Cybersecurity Services

15 Reasons why outsourcing will save you time and money

Learn More

What is a SIEM and why do customers need one?

It used to be that perimeter security solutions were enough...

Find Out