Skip to main content
Cyber Security Audit - C3SA CORP

SIEM Management

SIEM

C3SA's SIEM-as-a-Service allows organizations to correlate, trend, aggregate and log security events on a perpetual 24x7x365 basis that are generated by any security device such as firewalls and IDPS, server, workstation, application and any other asset that is deemed critical across the infrastructure.


We provide all of the necessary configuration, fine-tuning, administration and maintenance that may be required so that your staff can focus on other pressing matters while we ensure that your organization has all the tools it needs to remain secured and protected from threats all while helping you achieve and maintain any desired industry compliance certification such as ISO27001, CAS(T), PCI DSS and NERC CIP. Our SIEM-as-a-Service includes:

    • Seamless cloud-based security event logging
    • Powered and enabled by industry-recognized ArcSight technology
    • Point-and-click event logging and collection from most commercial and open source systems and devices
    • Highly customizable event source collection, correlation and profiling
    • Security event correlation, mining and trending of any identified critical asset
    • Continuous, 24x7x365, event logging, alerting and notification
    • Unlimited access to C3SA's SIEM-as-a-Service web portal with easy access to events, reports, dashboards and metrics

Find the Needle in the Haystack

With security appliances, servers, workstations and applications generating at times millions of events per second, it can be an overwhelming and daunting task for even the most seasoned of professionals to find events that are significant and warrant further analysis.  Delays in manually processing this volume of events and information can lead to attacks and compromises going unnoticed for extended periods of time or in the worst of situations, simply go undetected.


By working with your security staff, C3SA can help you identify and model critical assets whose events warrant a higher monitoring and reporting threshold and empower your staff to efficiently prioritize events and spend their limited investigative resources on items that deserve their full attention.

Gateway to Information

C3SA's SIEM-as-a-Service comes with an easy to navigate and customizable web portal that enables our users to quickly and easily find the information they are after. Whether or not you are seeking the minute details of a specific asset or wish to see every security event tied to a specific incident, our web portal can allow you to reach your goals in a matter of seconds. Every widget ranging from dashboards to reports are fully customizable to meet your specific needs so that you can easily reach, view and understand the information that matters to you. Alternatively, you can opt to use one of the many pre-built dashboard views and report templates to access the information that is typically the most sought after by our customers such as:

    • Top attackers
    • Top event sources by priority
    • Top event type by priority
    • Infected systems by priority and malware class
    • Significant configuration changes
    • Failed and successful login attempts
    • Noisy IDPS signatures

A SIEM in the Cloud

C3SA leverages the industry-recognized, acclaimed and award-winning ArcSight SIEM to deliver our SIEM service to our customers.


Using our technology and experts with countless successful ArcSight deployments under our belt, we offload the time and resources required by organizations to configure, fine-tune, manage and administer a SIEM all while providing custom-tailored advice to customers wishing to adapt our service to their unique environment and requirements.