Security Information and Event Management (SIEM)
Security Information and Event Management (SIEM) technology provides real-time analysis of security alerts generated by network hardware and applications. SIEM solutions come as software, appliances or managed services, and are also used to log security data and generate reports for compliance purposes.
SIEM Vendors
Cygnia Provide a number of SIEM solutions form leading SIEM vendors :
 |
Check Point is the only vendor to go beyond technology and define security as a business process. Check Point 3D Security uniquely combines policy, people and enforcement for greater protection of information assets and helps organisations implement a blueprint for security that aligns with business needs. |
 |
LogRhythm is recognised by industry experts as a leader in enterprise-class log and event management. LogRhythm has been recognized by Gartner as Visionary in the Security Information and Event Management segment |
 |
Loglogic is a premier SIEM solution. LogLogic’s position as a “Leader” in Gartner’s Magic Quadrant is based on LogLogic’s completeness of vision and ability to execute. |
 |
Juniper Networks, Inc. is the leader in high-performance networking. Juniper offers a high-performance network infrastructure that creates a responsive and trusted environment for accelerating the deployment of services and applications over a single network. |
SIEM Capabilities
Aggregation: SIEM/LM (log management) solutions aggregate data from many sources, including network, security, servers, databases, applications, providing the ability to consolidate monitored data to help avoid missing crucial events.
Correlation: looks for common attributes, and links events together into meaningful bundles. This technology provides the ability to perform a variety of correlation techniques to integrate different sources, in order to turn data into useful information.
Alerting: the automated analysis of correlated events and production of alerts, to notify recipients of immediate issues.
Dashboards: SIEM/LM tools take event data and turn it into informational charts to assist in seeing patterns, or identifying activity that is not forming a standard pattern.
Compliance: SIEM applications can be employed to automate the gathering of compliance data, producing reports that adapt to existing security, governance and auditing processes.
Retention: SIEM/SIM solutions employ long-term storage of historical data to facilitate correlation of data over time, and to provide the retention necessary for compliance requirements.
Cygnia's SIEM Solutions
Cygnia works with three of the leading SIEM vendors to provide a breadth of solutions that enables the organisation to have complete analysis and alerts of what happens on their network.
 |
Check Point Smart EventThe Check Point SmartEvent Software Blade is a unified security event management and analysis solution that delivers real-time, actionable threat management information. Administrators can quickly identify critical security events, stop threats directly from the event screen, add protections on-the-fly to remediate attacks, all via a single console. |
 |
LogRhythmLogRhythm provides a comprehensive, fully integrated, enterprise-class log management, log analysis and event management solution that empowers organizations to comply with regulations, secure their networks and optimize IT operations. By automating the collection, organisation, analysis, archival and recovery of all log data, LogRhythm enables enterprises to easily comply with log data retention regulations while simultaneously gaining valuable, timely and actionable insights into security, availability, performance and audit issues within their infrastructure. LogRhythm solutions are noted for their completeness, useful analytics, ease of use and rapid time to value |
 |
LoglogicLogLogic transforms the data customers have into the data they need – whether it’s to achieve compliance, mitigate risk, manage security threats, or monitor operational performance. LogLogic provides enterprise-class log management infrastructure and analysis that enables customers to collect, centralise and analyse their IT data in a way that is both easy-to-use and cost-effective. Loglogic provide business intelligence within minutes, not days, giving customers back the time and insight that matter most to the business. |
 |
Juniper STRMJuniper Networks Security Threat Response Manager (STRM) family of network security appliances provide a converged point of network performance and security management for enterprise and service provider customers. This network performance and security management system offers an integrated log, as well as network threat and compliance management for Juniper Networks environments. |