Technicalities now offers (Security Information & Event Management) as a hosted service.
Networks that sit behind a firewall appear to be safe, however the firewall (in its basic form) is meant to block incoming and outgoing connections. However, there must be some openings in order to allow in certain traffic such as emails, access to websites, local data, local machines, printers, etc. Because of this, firewalls can never be 100% secure.
A SIEM offers real-time analysis and visibility of security alerts generated by applications and network hardware. It does this by consolidating log files from many devices.
We have partnered with some of the leading SIEM providers to protect our customers and provide reports on potential security breaches. Historically, SIEMs have generally been focused on large corporations and organisations, where the minimum number of devices must exceed 250. We have now removed that hurdle and our SIEM service is available to all of our customers.
Technicalities offers its SIEM as a cloud service. As part of this service, we setup a virtual hosted server dedicated to run the software. We also deploy the agent to each endpoint (laptops, PCs, servers) which passes all log files back to the hosted server.
For further information, feel free to reach out on email or call 1300 131 626.