Security Operations Center

Security Operations Center

We offer a fully managed or co-managed Security Operations Center (SOC) as a Service in collaboration with AT&T Cyber Security’s AllienVualt SIEM. Our SOC houses an experienced information security team responsible for monitoring and analyzing an organization’s security posture on an ongoing basis. The team’s goal is to detect, analyze, and respond to cybersecurity incidents using a combination of technology solutions and a strong set of processes. Our team works closely with the organizational incident response teams to ensure security issues are addressed quickly upon discovery.

We monitor and analyze activities on networks, servers, endpoints, databases, applications, websites, and other systems, looking for anomalous activity that could be indicative of a security incident or compromise. The SOC is responsible for ensuring that potential security incidents are correctly identified, analyzed, defended, investigated, and reported. Additional capabilities include advanced forensic analysis, cryptanalysis, and malware reverse engineering to analyze

incidents. We undertake in delivering complete security visibility by providing the five essential security capabilities in a unified platform:

  • Asset Discovery: Active and passive network discovery
  • Vulnerability Assessment: Active network scanning, continuous vulnerability monitoring
  • Intrusion Detection: Network and host IDS, file integrity monitoring
  • Behavioral Monitoring: Net flow analysis, service availability monitoring
  • SIEM: Log management, event correlation, analysis, and reporting

KEY ELEMENTS

  • PHYSICAL SOC BASED IN SRI LANKA
  • 24/7 OPERATION
  • EXPERIENCED SECURITY PROFESSIONALS
  • REAL-TIME INCIDENT MANAGEMENT
  • FILE INTEGRITY MANAGEMENT