|
 |
| » Real-Time Security Managed Service |
 |
| Security Monitoring and Management, through our Symantec partnership, allows organizations to concentrate their efforts on business initiatives and not on the impending threats. With outsourced monitoring services, internal resources can be better utilized on the business' core competencies. |
|
| » Firewalls & Intrusion Detection Systems |
| Corporate firewalls, intrusion detection systems, and other security devices generate an immense volume of data that is virtually impossible to interpret without consuming significant in-house IT staff resources. Our partner, Symantec provides the only managed security service available today that is fully capable of detecting, analyzing, and responding to the security data your network produces—all in real-time. |
|
| » Managed Security Service |
| Symantec Managed Security Services delivers industry leading security monitoring, management, and response to our clients. Symantec's 24x7 real-time services are designed to enhance an organization's information security posture through continuous monitoring and management of security devices, expert analysis of log data, and immediate response to potential security threats as they are detected. Based on Symantec's ground-breaking security operations center (SOC) technology, Symantec Managed Security Services are delivered through a unique and highly-effective combination of skilled personnel, best-practice processes, and state-of-the-art technology. From their security operations centers (SOCs) around the world, Symantec Managed Security Services provides flexible, vendor-neutral offerings to meet a variety of business needs. Symantec Managed Security Services provides organizations with a real-time view of their enterprise security posture and the analysis and commentary needed to adjust defenses against emerging attacks, for optimal protection of mission-critical assets. |
|
| » The Symantec Process |
1. Symantec’s CaltarianSM technology platform aggregates log data and alerts generated by the leading commercially available firewalls, IDSs, VPNs, and other security devices and applications.
2. Caltarian processing technology then correlates the data from across the enterprise and compares it against thousands of attack signatures to identify suspicious network activity.
3. Symantec security engineers, based in a 24x7 Security Operations Center (SOC), investigate each event and initiate a response in accordance with customized escalation procedures.
4. Working closely with the client, Symantec security analysts take action to defend against intrusions before a crippling loss of information can occur.
|
|
| » Real-Time Security Monitoring and Response |
| Symantec analysts continuously monitor the security status of client networks, providing real-time alerts, guidance, and response when real network security threats arise or security device failures occur. |
|
| » Secure Internet Interface |
Symantec’s Secure Internet Interface provides clients with real-time security information, including analysts’ recommendations as well as firewall log data, IDS alerts, and other summary information. The interface also offers a variety of powerful tools to generate customized queries and reports.
Symantec's Secure Internet Interface gives clients the information and tools they need to stay in control of their vital network data. Click image to enlarge. |
|
| » Analytical Processing |
A unique Analyst Response Console (ARC) provides Symantec analysts with macro overviews of detected and correlated security events, with the ability to “drill down” to the raw log data. Analysts can perform basic and advanced queries against the consolidated log data. They can also filter false positives, and set thresholds for malicious activity. Analysts rate security events according to severity scale, with levels ranging from purely informational notifications to full-scale breach emergencies.
Our unique analyst response console (ARC) gives Symantec analysts a complete normalized view of all security activity across your network. Click image to enlarge. |
|
| » Intelligent Event Processing |
| The CaltarianSM technology platform aggregates, standardizes, and interprets data from security logs and alerts generated by devices distributed across your enterprise. Caltarian provides a single, focused view of all security activity in real-time. |
|
| » A Global Security Perspective |
| Symantec analysts aggregate and analyze data produced across our entire client base. They can identify new attack signatures and strategies and address emerging threats before they become widely adopted by the hacker community. |
|
| » Flexibility and Scalability |
| Relying on a remote management and monitoring methodology, the Caltarian technology platform is easily scalable and enables our staff to instantly deploy product upgrades. Symantec also offers high-availability and load balancing capabilities, and we can work with clients to develop and deploy policies tailored to support a carefully constructed, multi-tiered information security architecture. |
|
| » Security Operations Center |
The Caltarian Technology Platform is based in Symantec Security Operations Centers (SOCs), which serve as home to Symantec security analysts, as well as customer engineering groups. Designed for maximum redundancy, Symantec's multi-million dollar, state-of-the-art SOC's contain redundant, discrete power sources, fire suppression systems, three-factor biometric personnel screening, and VPN termination points that allow interoperability with nearly any client network.
A Symantec SOC maintains multiple, redundant connections to the Internet, each communicating with separate Tier-1 ISPs. And a portion of each SOC is also specially designed to maintain and store large amounts of client security data. Our distributed architecture has the ability to dynamically reroute customer data to available resources, and analysts responsible for particular sets of clients can perform analysis from any SOC.
 |
|
 |
| Symantec SOCs are visitor friendly and able to accommodate up to 40 quests at a time without impacting operations. |
|
|
| Each Symantec SOC contains a built-in "data center" facility for hosting the Caltarian technology platform. |
|
 |
 |
|
 |
| This Symantec SOC contains nine 42" plasma screens, three 100" rear-projection screens, and 64 19" flat-panel displays. |
|
|
| Symantec analyst "pods" contain built-in power, lighting, data, heating and air circulation systems and are programmed to rotate slowly over the course of a shift to give analysts different views and promote team interaction. |
|
|
|
|
|
|
|
