What is SIEM?
SIEM, or Security Information (and) Event Management, is a branch of IT security derived from log centralization. SIEM's goal is to correlate, detect and report security incidents.
The Energy Logserver in the SIEM plan is a powerful tool that is able to detect, alert and indicate threats inside IT architecture. It has an advanced internal system for calculating the weight of incidents which can be assigned to users. This means that the Energy Logserver SIEM not only detects incidents, but can analyze them in terms of priority.
In order to detect suspicious activity like intrusion attempts, anomalies detected, misconfigured applications and unauthorized user actions we corrlate all sort of log sources.
Energy Logserver SIEM plan is based on the architecture of the central server and optional agents. Data is analyzed and matched to the security schemes. Application provides access to a rich base of predefined correlation rules and visualizations, which allows you to start working immediately with Your SIEM Plan.
Energy Logserver with SIEM plan ensures compliance with many important regulations and safety standards. Extensive functionality, scalability and support for multiple platforms allows the organization to meet technical requirements for compliance with the required standards. The system provides ready-made reports and visualizations for such regulations as: PCI DSS, GDPR, CIS, GPG13.