EiQ Networks, a pioneer in hybrid security as a service, today announced a new co-managed SIEM and log management offering called SOCVue® for Splunk Enterprise Security (ES). Offered as a subscription service, this newest addition to the SOCVue line goes beyond a standard co-managed service to offer a highly integrated, comprehensive, and effective information security monitoring program that combines people, process, and technology to organizations using Splunk ES.
Through the Splunk Technology Partner (TAP) program, EiQ developed tight integration between Splunk ES and EiQ’s Security Operations and Analytics Platform – SOCVue. This integration allows SOCVue to enrich Splunk alert data with additional contextual information such as threat Intelligence to identify and detect malicious activity and minimize false positives. Acting as a force multiplier for security teams, EiQ’s global SOC teams will monitor, analyze, and investigate alerts and respond with timely notification of any security incidents along with remediation guidance.
EiQ security experts will also assist in security content engineering, as well as developing and implementing alerts and correlation rules to identify anomalies and thwart potential cyber attacks. Customers will be able to leverage SOCVue security analysts to conduct on-demand forensics investigations to find the cause of any issue. EiQ’s team will also help develop executive, compliance, and security reports to meet various compliance mandates such as PCI DSS, SOX, GLBA, HIPAA, FFIEC, COBIT, NIST, and more.
The EiQ SOC team will filter thousands of alerts down to a single snapshot of an organization’s current security and compliance posture – saving both time and money.
EiQ’s SOCVue for Splunk Enterprise Security delivers:
- Co-management and tuning of Splunk ES SIEM and log management
- 24/7/365 monitoring and incident notification with remediation guidance
- Content engineering to build executive dashboards and security reports
- Creation and implementation of alerts and correlation policies
- Development of compliance reports such as PCI DSS, HIPAA, SOX, GLBA, FFIEC, COBIT, NIST, etc.
- Enrichment of Splunk ES alert data with threat intelligence to identify malicious activity
- Best practices as recommended by the SANS/CIS Critical Security Controls
Splunk Enterprise Security makes it simple to collect, analyze, and act upon the untapped value of the big data generated by technology infrastructure, security systems, and business applications. It monitors and analyzes machine data from any source to deliver Operational Intelligence to optimize IT, security, and business performance. Splunk is trusted to leverage machine data to deliver visibility and insights into IT and security systems by more than 13,000 companies worldwide.
“Splunk Enterprise Security is recognized as the leader in the SIEM and log management market by leading industry analysts, including Gartner, Forrester, and IDC,” Vijay Basani, Founder and CEO, EiQ Networks. “Just like every SIEM and log management solution, Splunk ES requires significant security domain expertise and a team of security professionals to effectively protect customer IT assets from cyber attacks 24x7 while complying with compliance mandates.
That’s where EiQ and SOCVue comes in: our global SOC security analysts provide customers with the support they need to monitor, detect, prioritize threats, and engineer security content. We increase the ROI of the customer’s Splunk investment by continually protecting their IT assets from cyber attacks while complying with regulatory mandates through a co-managed model.”
SOCVue for Splunk Enterprise Security, a co-managed SIEM and log management service, will be available on May 22, 2017. For more information, please go to: https://www.eiqnetworks.com/security-as-a-service/co-managed/splunk-ente...
More About SOCVue
EiQ delivers comprehensive proactive and reactive security monitoring program to protect against modern-day cyber threats while meeting regulatory mandates. EiQ’s SOCVue services combine the best people, process, and technology for an enterprise-class IT security program:
EiQ’s SOCVue Security Monitoring service gives customers visibility and control over their IT environment with around-the-clock threat detection, analysis and notification, proactive remediation guidance, and compliance auditing.
EiQ’s SOCVue Vulnerability Management service uses Qualys technology to mitigate risk with unlimited scans, analysis, and remediation guidance – so customers can focus on what matters most: their core business.
EiQ’s SOCVue Patch Management service identifies, analyzes, and reports on missing matches on operating systems and third-party applications while providing the ability to schedule, approve, and remotely deploy and validate patches with a simple click of a mouse.
SOCVue gives customers the flexibility and cost savings of a security-as-a-service offering, and also provides a world-class team of security and technology experts to manage the technology around the clock and help implement cybersecurity best practices. SOCVue enables organizations to:
- Reduce the cost of purchasing and maintaining complex IT security solutions
- Supplement existing IT staff with cybersecurity experts from EiQ’s 24x7x365 Security Operations Center (SOC)
- Improve their IT security posture through proactive security monitoring and vulnerability assessment
- Help meet compliance requirements such as PCI DSS, HIPAA, FFIEC, GLBA, and more
About EiQ Networks
EiQ, a pioneer in hybrid security as a service, is transforming how mid-market organizations build enterprise-class security programs. Acting as an extension of our customers’ IT teams, EiQ provides continuous security operations based on best-of-breed technology at a fraction of the cost of alternative solutions. EiQ is a trusted advisor to organizations that need to improve their IT security and compliance posture and protect against cyber threats and vulnerabilities. For more information, visit: https://www.eiqnetworks.com.
© 2017 EiQ Networks, Inc. All Rights Reserved. EiQ, the EiQ logo, the SOCVue logo, SecureVue, ThreatVue, SOCVue, ComplianceVue, ForensicVue, and Continuous Security Intelligence are trademarks or registered trademarks of EiQ Networks, Inc. in the US and/or other countries. All other product names and/or slogans mentioned herein may be trademarks or registered trademarks of their respective companies. All information presented here is subject to change and intended for general information.