Alert Logic Solutions

Managed intrusion detection solution with built-in vulnerability assessment scanning including PCI scans.

Alert Logic Threat Manager

Unlike other intrusion prevention systems, host vulnerability assessment information gathered by Threat Manager is automatically correlated by the patented Alert Logic expert system with deep packet traffic analysis to suppress false attacks and provide the customer with detailed insight into the nature of the attack and its risk to the environment. This allows the system to identify threats as they evolve or unfold over minutes, hours or days. Alert Logic manages all updates, upgrades, and infrastructure required to deliver the service. The client can configure scans, dashboards, and reports according to internal requirements.

Key Features:

  • Patented 7-Factor Threat Scenario Modeling – purpose-built grid computing infrastructure, with the ability to automatically aggregate and correlate anomalous behavior patterns to quickly identify threats and attacks to your network – reduces false positives and improves threat detection.
  • Regularly scan internal and external networks—whenever and as often as you choose
  • Global threat visibility incorporates thousands of sensors into the expert system’s decision process
  • Comply with a wide range of regulatory mandates (PCI DSS, SOX, HIPAA, GLBA, etc.) with audit-ready reports
  • 24×7 Security Operations Center (SOC) staffed with GIAC analysts provide around-the-clock monitoring services
  • Use custom reports or leverage the dozens of out-of-the-box dashboards and reports to effectively track and manage security incident activity
  • Easy-to-use web console to view reports, run queries and perform drilldown analysis from any browser
  • SaaS delivery model means quick deployment with minimal capital investment

Threat Manager + ActiveWatch Services

Alert Logic ActiveWatch builds upon the Threat Manager foundation to provide 24×7 monitoring and expert guidance services from Alert Logic’s state-of-the-art Security Operations Center (SOC). The ActiveWatch team augments your existing IT team to ensure rapid detection and response to network incidents, around the clock. It delivers customized tuning and customization of the Threat Manager IDS to fit the unique needs of customers.

Key Features:

  • Telephone notification of incident from GIAC-certified security professionals working in the Security Operations Center (vs. e-mail notification for Threat Manager-Only service)
  • 15 minute response upon discovery of incident
  • Human expert analysis of all incidents
  • Incident and remediation response advice
  • Quarterly review of security posture
  • Cost-effective, turnkey security at a fraction of the cost of an in-house dedicated, Security Operations Center.
  • Improve the breadth of coverage for network security monitoring to include off-hours time windows when attacks are more likely to happen.
  • Ensure end-to-end coverage for PCI-DSS requirement 11.4.
  • Enables staff to focus on business-critical initiatives without the capital expenditures, deployment headaches, training and other commitments required for self-managed solutions.

Alert Logic Log Manager

Alert Logic Log Manager is a cloud-powered log management solution that is delivered using a software-as-a-service (SaaS) model. Effective log management is not only imperative in maintaining compliance, but is also a powerful security tool that can prevent intrusion and security breaches. With Log Manager, you can now have on-demand and automated log collection, storage, reporting, correlation and alerting across your entire environment.

Key Features:

  • Meet compliance requirements for log management, such as PCI, HIPAA, and others
  • Increase IT security posture with greater visibility into asset activity via log message data
  • Collect logs from virtually any environment (public, private, hybrid clouds, on-premise)
  • Store log data safely in our SSAE 16 Type 2 verified, redundant data centers
  • Access dozens of out-of-the-box reports and dashboards
  • Utilize cloud-powered infrastructure that provides powerful search, analysis, and forensic capabilities
  • Correlate events, set automatic alerts, and schedule reoccurring reports
  • Prepare for compliance audits and security events
  • A simple but powerful web interface gives you a unified view into all of your data, with tools to rapidly uncover the insight and alerts you need to remain secure and compliant.
  • Collect syslog from firewalls, switches, routers, printers, Unix servers, and many such devices.

Log Manager + ActiveWatch

Alert Logic ActiveWatch for Log Manager is a managed service that delivers 24×7 analytics and continuous security monitoring of your log data, identifying potential security and compliance issues that could be impacting your organization. Unlike other costly and incomplete managed security services, Alert Logic ActiveWatch for Log Manager not only identifies security issues, but also provides you with the recommended steps you need to resolve the issues.  SLA is 15 minutes.

Log Manager + ActiveWatch Key Features:

  • Dedicated 24×7 security monitoring by certified experts
  • Incident identification from a variety of sources, such as network devices, operating systems, and other security products
  • Automated log review that meets the requirements of PCI DSS standard
  • Correlation rules library designed to identify the most common threat vectors and security issues
  • Detailed information regarding incident origins, as well as issue resolution recommendations

Log Manager + Log Review

Each day, a team of security and compliance experts from the Alert Logic Security Operations Center (SOC) will review your data against 21 reports designed specifically for PCI-DSS 3.x. Our team will provide you with insights into any security or compliance issues discovered and maintain an auditable case history of each daily review.

Log Manager + Log Review Key Features:

  • Eliminate need for dedicated IT resources to collect, archive, and review logs on a daily basis
  • Optimize time by only getting involved when action is needed
  • View event log analysis reports and daily activity from our web portal
  • Monitor and archive all event logs without having to worry about storage, backups, or access
  • Demonstrate daily log review compliance to PCI DSS 3.0
  • Cover any environment from corporate, co-lo, private cloud, public cloud, and solutions on other Cloud Service

For more detailed information on Threat Manager, Active Watch, and Log Manager services, and receive a full list of features please contact us.