Security Information & Event Management (SIEM)
Our Security Information & Event Management (SIEM) managed services provide you with complete information security tracking, analysis and compliance solutions.
There is no doubt that information security is an important part of enabling a business to thrive and grow. Intellectual property, the corporate brand, services delivered and more need to be protected both from insiders as well as external attackers. Recent news reports indicate attacks are becoming more sophisticated and more difficult to detect when the right tools and skills are not in place.
In addition, the business challenge of managing information risk it is also increasing in complexity and organisational impact. Organisations are required to comply with standards such as the Payment Card Industry Data Security Standard (PCI DSS), PSM/ISM, ISO27001, ISO9002, ITIL, Sarbanes-Oxley, National Privacy Principles and others specific to their industry. Meeting those compliance requirements can be onerous.
One element that is common to a number of those standards and which is a good security practice, is the collection and review of log files and security events generated by systems and software. The information collected provides an excellent insight in the operations of an organisation. Organisations currently have extensive inputs to indicate the occurrence of information Security incidents and threats. Security events are reported from sources such as firewalls, intrusion detection/prevention systems, servers, mainframes, network systems, desktop activity and more.
The difficulty is not the access to event data, but the workload of identifying, collecting, analysing and interpreting the data, correlating vulnerability alerts, other risk indicators, and external threats information. The results need to be interpreted and provided to the security team and management in an understandable format, allowing appropriate business decisions to be made.
Shearwater’s SIEM Managed Security Services allows organisations to utilise our security expertise and resources to augment those security services already in place within the organisation.
For more information please contact us on 1300 228 872 or via email: