- IS security
- Personal Data Protection Security Project
- Security Project for Technical Device Designed for Work with Classified Information
- Risk Analysis and CRAMM Risk Analysis
- Personal Security
- Business Continuity Management - BCM
- Business Impact Analysis - BIA
- Network Security
- Protection Against Malicious Code
- Security Incident Monitoring and Management
- Access Control
- Security Policy Enforcement
- Security Control Documents
- Technical and object security
- IT solutions
- SW solutions
Security Incident Monitoring and Management
eTrust Security Command Center
A significant factor of an effective security system is its ability to provide information about the current status of security measures implemented for asset protection. A prerequisite for quick identification and response to incidents or threats is centralized presentation of services ensured within the information system and of their status. The option of reverse analysis, correlations and reporting allows retrograde examination, providing a complex view of the information system.
Solution Description
SCC (Security Command Center) is a central monitoring tool developed by a prestigious company, Computer Associates, which has been, for a long time now, one of the world leaders in providing software solutions for information system security. The SCC solution is utilized by banks, state administration bodies and multinational companies worldwide.
The SCC allows central monitoring of a bulk of information concerning events that occur within the information system, ensuring complex and thorough evaluation of such information.
The SCC represents a central security management tool with a core that supports storage of selected types of recorded events and analytical evaluation of such events designed to support proposing of security risk elimination measures.
Benefits of the Solution
The SCC is a central modular system collecting events across various operating system, device and application platforms. The feature of central collection with user role-based access meets the fundamental security premise – separation of system administrator functions from security administration. The SCC provides event prioritization and visualization, status representation as well as alert and report generation. It eliminates the possibility of modifying recorded events, and provides a tool for examination and drawing of consequences in the case of attempted or real unauthorized activities in an information system.
Being a central security monitoring tool, the SCC is a complex of tasks allowing:
- minimization of probability of security incident occurrence
- early security incident identification
- implementation of appropriate counter-measures following security incident detection
- keeping records on incidents
- analysis of the course of security incidents
Product Use
The SCC product is a strong and modular solution intended primarily for large and medium-sized enterprises with heterogeneous environments, a multitude of devices, and events occurring in such systems dispersed individually within the information system, offering no possibility for their central view or complex analysis.
The SCC product can, however, be used by anyone who requires:
- security incident prevention
- security incident identification and elimination
- early response to security incidents
- security incident documenting and statistics
- analysis of the course of security incidents
- compliance with legislative requirements