Volver a Noticias
Managed Security Services (CiberSoc) and EDR
2022-12-15 10:23:12
Empresa del Sector Ferroviario
The Sermicro Group has won a project to offer managed security services, through its CIBERSOC (Security Operation Centre), as well as the installation and administration of an EDR (EndPoint Detection & Response) system to an important company in the railway sector.
The aim of this project is to offer professional services of prevention, reaction and security management, based on methodology and procedures that are aligned with international best practices and whose purpose is the prevention, detection and necessary response to the constant cyber threats.
Our CIBERSOC (part of CYSE, the Cybersecurity Division of the Sermicro Group), offers companies that do not have the technical, logistical or human capacity, a managed cybersecurity service that provides the necessary level of control and visibility of threats to the entire IT infrastructure.
The main activities that our CIBERSOC will perform for this client will be:
In addition, this project offers the professional services of EDR (Endpoint Detection and Response), which provides continuous monitoring and analysis of the endpoint and the network. The aim is to identify, detect and prevent advanced threats more easily, automating and reducing the detection and exposure time, as well as the response time and reducing the workload of the IT area: Application Zero Trust Service.
The specialised team that will provide these services to our client is made up of senior cybersecurity consultants, administrators and analysts, technology controls operators and vulnerability scanning specialists.
Volver a Noticias
The aim of this project is to offer professional services of prevention, reaction and security management, based on methodology and procedures that are aligned with international best practices and whose purpose is the prevention, detection and necessary response to the constant cyber threats.
Our CIBERSOC (part of CYSE, the Cybersecurity Division of the Sermicro Group), offers companies that do not have the technical, logistical or human capacity, a managed cybersecurity service that provides the necessary level of control and visibility of threats to the entire IT infrastructure.
The main activities that our CIBERSOC will perform for this client will be:
- Continuous monitoring of events with the Security Information and Event Management (SIEM) tool, in 24x7 mode.
- Generation and adjustment of use cases related to threats.
- Integration of sources in SIEM and data correlation.
- Incident notification generation.
- Cyber surveillance service
Advantages of our CIBERSOC
- Experience based on the volume of incidents we handle, there is nothing comparable in Spain. The greater the volume of incidents handled, the greater the threat intelligence and, therefore, the greater the analysis capacity to counteract them. Physical monitoring in 175 countries, analysing up to 12 million cybersecurity incidents per day.
- More than 15 specialised cybersecurity processes certified in the UNE ISO/IEC 27001 UNE ISO/IEC 20000 1 ISO 9001 standard and in the Global Top 10.
- Accredited cyber incident response team as a CERT with FIRST (Forum of Incident Response and Security Teams) and with the Cyber Incident Response Centre awarded by Carnegie Mellon University, and also accredited as a NATIONAL CSIRT designated by a country or economy to have specific responsibilities in the cyber protection of that country or economy.
- More than 7 million IOCs (Indicator of Compromise) and more than 100 types of ML (Machine Learning).
Benefits of our CIBERSOC
- Have a clear institutional framework around digital security, based on risk management, implementing security controls in accordance with international norms and standards.
- Proving that security measures have been designed and implemented correctly.
- Identify vulnerabilities that cannot be detected by vulnerability analysis (tools).
- Identify and demonstrate the real risk of a vulnerability.
- Strengthen the security of individuals and the institution in the digital environment, with a risk management approach.
- Strengthen the scheme of identification, prevention and management of digital incidents.
- Identify security blind spots in people, processes and technology.
- Assess the Institution's level of maturity in security issues.
- Increase control over risks and threats, reducing the chances of attacks.
- Undertake preventive rather than reactive actions in the face of risks and threats.
- Continuously support the client in the event of any risk and/or threat.
In addition, this project offers the professional services of EDR (Endpoint Detection and Response), which provides continuous monitoring and analysis of the endpoint and the network. The aim is to identify, detect and prevent advanced threats more easily, automating and reducing the detection and exposure time, as well as the response time and reducing the workload of the IT area: Application Zero Trust Service.
The specialised team that will provide these services to our client is made up of senior cybersecurity consultants, administrators and analysts, technology controls operators and vulnerability scanning specialists.