Security Operations Center (SOC) as a Service – SOCaaS
Security Operations Center (SOC) as a Service – SOCaaS
Some of our clients already have a Security Information Event Management or SIEM software installed. This could be any SIEM software available in the market place. Our SOCaaS provides the ability for us to provide a 24x7x365 cyber monitoring service by incorporating the information from the SIEM to our multi-tenant platform. An example on how our architecture is deployed for Splunk is shown below:
The Securely Managed’s overview dashboard shown below provides various types of information, at a glance, to the user. In addition to the overview dashboard, SM has other information and configuration screens that provide more detailed information through its drill-down capability. In addition, it provides search and filtering capabilities to allow the user to reduce the scope of displayed items.
Overview Dashboard
Alarm Detail Dashboard
Securely Managed has plethora of customizable reports available and these are made available to all our clients. Our project team will customize these reports to you, at no extra cost to you.
Some of our reports are produced through a BI reporting engine. The data on the dashboards are real-time and has the latest information. Similarly, the reports also have the latest information. A sample customizable monthly report is shown below.
Our SOC
Securely Managed’s SOC will not only monitor alerts/events that are being generated, but also perform other threat hunting activities to proactively identify potential threats. As new systems are added, SM will continue to analyze, tune and monitor MD Anderson environment as depicted in the diagram below.
Securely Managed customizes the escalation process with input from clients. This escalation document will be used by our SOC when needed to contact our client personnel. A sample escalation workflow is shown below
Windows Assets Dashboard