security intelligence solutions and services · security intelligence solutions and services...
TRANSCRIPT
www.scnsoft.com © 2020 ScienceSoft ®
Security Intelligence Solutions and Services
www.scnsoft.com © 2020 ScienceSoft ®
Key Facts
ScienceSoft is an IBM Silver Business Partner that has been working in the
Security Intelligence area since 2003 and has over 150 information security
projects behind its belt
700employees
150+ projects
in Security consulting
17 years in Security,
31 years in IT consulting
www.scnsoft.com © 2020 ScienceSoft ®
Industry Competencies
Retail
Banking Healthcare
Oil & Gas
Telecom
Public Sector
www.scnsoft.com © 2020 ScienceSoft ®
Our Services
Security Information and Event Management (SIEM)
Identity and Access Management
Penetration testing
www.scnsoft.com © 2020 ScienceSoft ®
SIEM Services
SIEM consulting
SIEM implementation
Support services
Migration to QRadar
1
2
3
4
www.scnsoft.com © 2020 ScienceSoft ®
SIEM Consulting
Detectionof insider
and external threats
Selection of essential
log sources
Full technical assessment of the existing IT environment
Validationof criticalsecurity
components
Detailed recommendations on all aspects of the architecture
QRadar workshops and trainings
www.scnsoft.com © 2020 ScienceSoft ®
SIEM Implementation
Correlation rule creation
Solution deployment
Solution configuration
Solution integration
www.scnsoft.com © 2020 ScienceSoft ®
SIEM Integration
We integrate QRadar with the Customer’s devices and applications using:
Out-of-the-box
log source extensions
Custom
log source extensions
We have developed over 100 custom LSXs
www.scnsoft.com © 2020 ScienceSoft ®
Correlation Rule Creation
Suspected incidents
True offense
Security devicesand applications
Configuration info
Server activity
Network activity
Online activity
Data activity
Application activity
User activity
Event correlation
Activity baselining & anomaly detection
Fine-tuning
Offense identification
We develop LSXs to
collect information from
extensive data sources:
We perform deep
analysis to create
correlation rules:
You get actionable
and accurate
security insight
www.scnsoft.com © 2020 ScienceSoft ®
Support Services
IBM-certified consultants
24/7 support services
Remotely or on-site
IBM Certified AssociateSecurity Qradar
IBM Certified Deployment ProfessionalSecurity QRadar
www.scnsoft.com © 2020 ScienceSoft ®
Identity and Access Management
Consulting
Deployment and configuration
Maintenance and support
Migration
Full-cycle IAM services:
www.scnsoft.com © 2020 ScienceSoft ®
Identity and Access Management
Automated management
of user identities
Role-based access
management
Secure access to web,
mobile and cloud applications
User activity monitoring
Protection of sensitive
enterprise data
www.scnsoft.com © 2020 ScienceSoft ®
Penetration Testing
We test:
Network services Web applications
Client sideRemote access
Employee behavior *
* Social engineering testing
www.scnsoft.com © 2020 ScienceSoft ®
Success Story
IBM SIEM Solution for a Bank
Customer Solution
Tools & Technologies
Eurasian Bank,
a universal
commercial
Kazakhstan bank
with over 850,000
customers and
$3.6 bn in assets
IBM Security QRadar SIEM, Python, Regex, Linux Shell
High-level tuning of an
IBM QRadar SIEM solution.
ScienceSoft developed
custom LSXs to integrate
log data from 12 business
apps and created 94
correlation rules for threat
cases across 5 critical apps
www.scnsoft.com © 2020 ScienceSoft ®
Success Story
TSIEM for a Healthcare Organization
TSIEM, DB2, WAS, TDI, VMWare,
GSL, GML, GEM, W7, GVS, RegExp,
SQL, Batch, Shell, Python
Tools & Technologies
SIEM solution to collect
information from
5 healthcare applications
and convert it for further
processing (as much as
700,000 medical
transaction events per
day)
Customer Solution
Tools & Technologies
A large US
healthcare
organization with
more than 4,000
employees
www.scnsoft.com © 2020 ScienceSoft ®
Success Story
IAM Solution for a Public Organization
IBM Security Identity Manager
Customer Solution
Tools & Technologies
A governmental
organization
Custom solution for
role-based access control
to manage access rights of
thousands of employees
according to their job
roles
www.scnsoft.com © 2020 ScienceSoft ®
Success Story
Penetration Testing for a Mobile Operator
Acunetix, Burp Suite, Immunity Debugger,
Metasploit, Nmap, OpenVAS, Skipfish,
sqlmap, XSpider, w3af, Wfuzz, ZAProxy
Tools & Technologies
ScienceSoft assessed the
Customer’s security level
(5 selected public web
applications and
5 selected elements of
the network perimeter)
and revealed serious
vulnerabilities
Customer Solution
Mobile operator
with over
5 mln subscribers
and almost 2,000
employees
www.scnsoft.com © 2020 ScienceSoft ®
Let’s Keep in Touch!
SCIENCESOFT USA
5900 S. Lake Forest Dr., Suite 300 McKinney, TX 75070, USAPhone: +1 214 306 68 37Email: [email protected]: www.scnsoft.com
Learn more about OUR SECURITY CONSULTING SERVICES
Read OUR INFORMATION SECURITY BLOG – for fresh insights