top of page
nspect-product-security-operations-center-services

Security Operations Center (SOC) Services

Security Event Management Service Scope

by nspect.io

Information

Security event management encompasses the following activities with the aim of establishing the necessary mechanism for managing security events, ensuring its effective operation, conducting controls, and providing notifications and investigations in critical security events.

nspect-product-image-security-operations-center-services

Activity Enabling  Alarm Monitoring Rules  

This service involves the creation of alerts based on correlation rules defined in the SIEM system and their monitoring. This service allows potential threats within the organization to be quickly identified. 

Identification of the security team or responsible individuals within the organization. 

Configuration of alarm rules through the user interface of the SIEM software. 

Activity Collection of Relevant Logs from Systems 

This activity involves the gathering of logs generated in various systems of an organization by the SIEM software. These logs play a crucial role in the detection and analysis of threats to the network. 

Determination of which logs will be collected from the organization's systems. 

Creation of collection strategies tailored to the organization's needs. 

Configuration of systems to enable log collection, providing support for the necessary settings to allow the system to collect relevant logs. 

Identification of the protocols and formats in which the collected logs will be presented, and integration into the SIEM software. 

Activity Sending Critical Alarms Through Email 

This service enables integration with an email to ensure that critical alerts generated by the SIEM system are quickly seen by relevant personnel. 

Configuration of email settings through the user interface of the SIEM software. 

Once alert addresses are determined, the SIEM software automatically sends an alert message when a specific event occurs. 

The alert message contains detailed information about the event's nature and location, requiring recipients to access the SIEM interface for further details. 

Security Operations Center (SOC) Services

100 Assets

$1,999.00

Every month

  • Enabling Alarm Monitoring Rules

  • Collection of Relevant Logs from Systems

  • Sending Critical Alarm Through Email

  • Up to 100 Assets (Laptops,Servers, Cloud Instances ETC)

Security Operations Center (SOC) Services

500 Assets

$0.00

Every month

  • Enabling Alarm Monitoring Rules

  • Collection of Relevant Logs from Systems

  • Sending Critical Alarm Through Email

  • Up to 500 Assets (Laptops,Servers, Cloud Instances ETC)

bottom of page