Overview
The managed ProActive Security Operation Center (PSOC) monitors cyber security incidents on cloud environments and provides immediate reactions to these incidents, with the assistance of our cyber analysts . Our unique service proactively identifies and mitigates the risks posed by vulnerabilities that can directly impede your business continuity. The PSOC features managed 24/7 monitoring with ongoing SIEM optimization, based on leading SIEM and IR platforms, with ongoing SIEM optimization, security log retention and advanced response. Our advanced capabilities integrate cyber threat intelligence with ongoing cyber security monitoring. Focused alerts are based on global intelligence, customer related sectorial intelligence or targeted intelligence with active monitoring, mentions of customer resources and identifiers in the dark and deep networks and suspicious forums. Proactive threat hunting focuses on ongoing investigation of received alerts and security-related log data, for detection and identification both of potential cyber security attack and of data breaches from various attack vectors.
Deliverables:
We offer four levels of PSOC service:
Bronze
- MSSP Monitoring- in business hours
- SIEM Platform- QRoc- Qradar on cloud.
- Monthly SIEM security enrichment
- Response methodology- Customer update
Silver
- 24/7 MSSP Monitoring
- SIEM Platform- QRoc- Qradar on cloud.
- Monthly SIEM Optimization
- Monthly SIEM security enrichment
- Response methodology- Customer update
Gold
- 24/7 MSSP Monitoring
- SIEM Platform- QRoc- Qradar on cloud.
- Monthly SIEM Optimization
- Monthly SIEM security enrichment
- ProActive threat hunting
- Response methodology- First Aid IR
Platinium
- 24/7 MSSP Monitoring
- SIEM Platform- QRoc- Qradar on cloud. No limit log sources
- Monthly SIEM Optimization
- Monthly SIEM security enrichment
- ProActive threat hunting
- Response methodology- First Aid IR
Highlights
- First Aid Remediation Response: Most MSSP Centers simply notify you of cyber incidents and leave it up to you to respond. We believe that only by providing immediate reaction, based on pre-approved playbooks, can we provide efficient first aid.
- Cyber leaders with a focus on AWS cyber protection: Combining a hands-on attitude, in-depth understanding, and profound experience specifically for AWS cloud, we tailor cybersecurity measures for your environment, including collection and analysis of security-related logs from the AWS Security cutting-edge toolbox, such as AWS Shield Advanced, AWS WAF, AWS Firewall, Amazon Inspector, AWS Security Hub, AWS SSO, Amazon CloudFront and more.
- Continuously Enriched Monitoring: Our staff writes new rules and improves the existing ones for your monitoring tools. Additionally, they will connect your tools to new intelligence and log sources. In-depth and close knowledge of customer networks and systems, combined with incomparable practical experience of cyber experts, we provide professional and quality monitoring for your environment.
Details
Pricing
Custom pricing options
Legal
Content disclaimer
Resources
Support
Vendor support
If you have questions about this service or about Comm-IT please reach out and we will get you the information you need. Phone (US): +1 (646) 6738665 Phone (IL): +972(3) 927 9000 Email: awsmarketplace@comm-it.com Contact Us: www.comm-it.com/contact
Software associated with this service
![Trend Micro Deep Security](https://d7umqicpi7263.cloudfront.net/img/product/3b5aca6c-7794-46fd-a51d-ebfdbe1f4c63.png)