{"id":1642,"date":"2018-02-09T09:27:16","date_gmt":"2018-02-09T09:27:16","guid":{"rendered":"https:\/\/genesis.swiss\/?page_id=1642"},"modified":"2018-03-09T07:44:20","modified_gmt":"2018-03-09T07:44:20","slug":"it-security-management","status":"publish","type":"page","link":"https:\/\/genesis.swiss\/en\/it-security-management\/","title":{"rendered":"IT Security Management"},"content":{"rendered":"

[vc_row content_width=”fullwidth” content_placement=”middle” text_color=”__” heading_color=”__” link_color=”__” link_hover_color=”__” el_class=”.vc_row-slider” css=”.vc_custom_1505975901397{margin-top: -1.5em !important;margin-bottom: -1.5em !important;}”][vc_column][vc_single_image image=”851″ img_size=”custom” img_size_custom=”2560×450″ alignment=”center”][\/vc_column][\/vc_row][vc_row][vc_column][vc_column_text]<\/p>\n

IT Security Management<\/h1>\n

The aim of IT Security Management is to protect the data and services on which the information is based, in accordance with the value they represent for the company with regard to confidentiality, integrity and availability.<\/p>\n

Comprehensive security solutions that can be adapted to deal with the complex threats and business needs have become indispensable in the modern business landscape. If you want to stay one step ahead of external and internal attacks, you need quick response times, continuous monitoring and the ability to identify and actively respond to known, unknown and complex threats.[\/vc_column_text][vc_tta_tour][vc_tta_section title=”Challenges” tab_id=”1497272952006-873f813d-cd50″][vc_column_text]<\/p>\n

Where do the challenges lie?<\/h4>\n

In recent years, the subject of IT security has compelled many IT manager to act quickly in order to avert detrimental consequences. Numerous attacks (botnets, malware, Trojans, ransomware and phishing attack) are constantly placing company data under threat. This means that businesses have to be more vigilant than ever, as any attack on a company data can result in high economic losses.<\/p>\n

[\/vc_column_text][\/vc_tta_section][vc_tta_section title=”Requirements” tab_id=”1497272952116-ac398e88-e4a3″][vc_column_text]<\/p>\n

Armed against more cyber attacks<\/h4>\n

The number of cyber attacks has risen enormously. Gone are the days of the amateur, nowadays professional groups are at work. They work collaboratively, dividing up the tasks, and always use new paths of attack. Companies cannot cope with these kind of huge cyber threats on their own any more. Such threats can stem from a variety of sources, for example: out-of-date software with vulnerabilities, unpatched systems or carelessness of when dealing with new technologies, such as the Internet of Things (IoT). Cyber attacks are becoming increasingly more sophisticated and can bypass conventional forms of protection with the use of methods such as botnets Drive-by-Exploits or Advanced Persistent Threats.[\/vc_column_text][\/vc_tta_section][vc_tta_section title=”Solution” tab_id=”1497272952226-68e7023a-30cd”][vc_column_text]<\/p>\n

What is being done about it<\/h4>\n

Various studies have shown that although companies are become increasingly aware of security threats to their IT, they in fact do very little to prevent this from happening. No matter what size the company is, the effort awarded to IT security cannot be limited to simply setting up and maintaining a firewall. This kind of traditional security measure only provides a protective function. Successful attacks must also be expected in secure IT systems. Every day there are new variants and procedures that ultimately only have one goal: to undermine and break through existing security measures. IT Security Management does not just include Prevention but also Detection and Response and it is regarded as a uniform process.[\/vc_column_text][\/vc_tta_section][\/vc_tta_tour][\/vc_column][\/vc_row][vc_row content_width=”fullwidth” text_color=”__” heading_color=”__” link_color=”__” link_hover_color=”__” css=”.vc_custom_1495436542094{padding-top: 40px !important;padding-bottom: 40px !important;background: #222222 url(https:\/\/genesis.swiss\/wp-content\/uploads\/2017\/05\/genesis_background-10.png?id=65) !important;}” el_class=”.textcolor-white”][vc_column][vc_column_text]<\/p>\n

Benefits of IT Security Management<\/h2>\n

[\/vc_column_text][spring_shortcode_testimonials testimonial_values=”%5B%7B%22testimonial_content%22%3A%22Ensures%20the%20company%E2%80%99s%20goals%20are%20achieved%22%2C%22testimonial_rate%22%3A%225%22%7D%2C%7B%22testimonial_content%22%3A%22Ensure%20the%20continuity%20of%20the%20business%20process%22%2C%22testimonial_rate%22%3A%225%22%7D%2C%7B%22testimonial_content%22%3A%22Protects%20against%20losses%20(money%2C%20image%20and%20customers)%5Cn%22%2C%22testimonial_rate%22%3A%225%22%7D%2C%7B%22testimonial_content%22%3A%22Ensures%20contracts%20are%20fulfilled%20as%20well%20as%20legal%20requirements(compliance%20guidelines)%5Cn%22%2C%22testimonial_rate%22%3A%225%22%7D%2C%7B%22testimonial_content%22%3A%22Allows%20the%20existing%20risks%20to%20be%20controlled%20with%20economic%20use%20of%20funds%5Cn%22%2C%22testimonial_rate%22%3A%225%22%7D%2C%7B%22testimonial_content%22%3A%22Conveys%20trust%20in%20the%20structures%20through%20knowledge%20of%20the%20risks%20and%20the%20measures%20taken%22%2C%22testimonial_rate%22%3A%225%22%7D%2C%7B%22testimonial_content%22%3A%22Guarantees%20continuity%20of%20your%20business%20without%20damaging%20your%20image%5Cn%22%2C%22testimonial_rate%22%3A%225%22%7D%5D” testimonial_show_author_avatar=”” testimonial_show_author_rating=”” testimonial_color_scheme=”color-light” testimonial_layout=”layout-slider” sc_loop=”1″ sc_nav=”0″ sc_dots=”1″ sc_nav_pag_style=”owl-control-shortcodes” sc_nav_pag_scheme_color=”owl-color-dark” sc_autoplaytimeout=”5000″ sc_mouse_wheel=”0″ el_class=”.textcolor-white”][\/vc_column][\/vc_row][vc_row text_color=”__” heading_color=”__” link_color=”__” link_hover_color=”__” css=”.vc_custom_1495460736635{background-color: #ffffff !important;}”][vc_column][vc_column_text]<\/p>\n

Unsere Komplettl\u00f6sungen<\/h2>\n

[\/vc_column_text][vc_tta_tabs active_section=”1″ css=”.vc_custom_1500369773874{background-color: #f7f7f7 !important;}” el_class=”.shadow”][vc_tta_section title=”Cyber Detection & Response” tab_id=”1509444711724-6bc04cef-0b11″][vc_column_text]<\/p>\n

Sicherheits\u00fcberwachung und Risiko-Erkennung rund um die Uhr<\/h3>\n

Betreiben Sie IHR eigenes Security Operations Center (SOC) mit IHREM Team basierend auf der RADAR Platform oder \u00fcberlassen Sie uns den kompletten Aufbau und Betrieb mittels unseren Managed Security Services<\/a>. SIE entscheiden und k\u00f6nnen nichts falsch machen \u2013 weil ein Umstieg zwischen den beiden Betriebsmodellen in beide Richtungen bei Bedarf auch noch sp\u00e4ter mit derselben Technologie unproblematisch bewerkstelltig werden kann.<\/p>\n

Wir unterst\u00fctzen Sie sowieso in allen Phasen von der Planung und Implementierung, bis hin zur Integration in Ihre Organisation und der laufenden Verbesserung \u2013 egal ob Sie die Security Services auf- oder ausbauen m\u00f6chten.<\/p>\n

Die RadarPlatform ist dabei das Herzst\u00fcck, die einen an Ihre Bed\u00fcrfnisse angepassten Einsatz erlaubt. St\u00e4ndige Updates, integrierte Threat Intelligence und laufende Verbesserungen sind inklusive. Von Big Data Analyse bis zu ma\u00dfgeschneiderten Berichten im Risk & Security Cockpit und Alarmierung \u2013 alles immer state-of-the-art und nach dem bew\u00e4hrten RadarServices Schema der Erkennung und Bewertung inklusive Advanced Correlation Engine.<\/p>\n

Dar\u00fcber hinaus unterst\u00fctzen wir Sie durch unsere SOC Empowerment Services: Wir passen die Plattform an Ihre speziellen Bed\u00fcrfnisse an, f\u00fchren Trainings f\u00fcr Ihr SOC-Team durch und stellen gemeinsam mit Ihnen die f\u00fcr Ihre Organisation passenden Prozesse und Best Practices auf. Das Ziel immer vor Augen: h\u00f6chste Effektivit\u00e4t bei Detection & Response. Unsere Erfahrung ist f\u00fcr Sie immer zug\u00e4nglich.[\/vc_column_text][vc_row_inner css=”.vc_custom_1496304454539{margin-top: 3em !important;margin-bottom: 3em !important;padding-top: 2em !important;padding-bottom: 2em !important;background: #222222 url(https:\/\/genesis.swiss\/wp-content\/uploads\/2017\/05\/genesis_background-10.png?id=65) !important;}” el_class=”.textcolor-white”][vc_column_inner][vc_column_text]<\/p>\n

Die Nutzen von Cyber Security Detection & Response\u00a0sind<\/h5>\n

[\/vc_column_text][spring_shortcode_testimonials testimonial_values=”%5B%7B%22testimonial_content%22%3A%22Pr%C3%A4mierte%20Technologie%22%2C%22testimonial_rate%22%3A%225%22%7D%2C%7B%22testimonial_content%22%3A%22Das%20gr%C3%B6sste%20Cyber%20Defence%20Centre%20in%20Europa%22%2C%22testimonial_rate%22%3A%225%22%7D%2C%7B%22testimonial_content%22%3A%22Perfektion%20in%20der%20Analysetiefe%22%2C%22testimonial_rate%22%3A%225%22%7D%2C%7B%22testimonial_content%22%3A%22Komplettabdeckung%20in%20der%20Ergebnisbreite%22%2C%22testimonial_rate%22%3A%225%22%7D%2C%7B%22testimonial_content%22%3A%22Ihr%20IT-Fr%C3%BChwarnsystem%20ist%20immer%20%5C%22state-of-the-art%5C%22.%22%2C%22testimonial_rate%22%3A%225%22%7D%5D” testimonial_show_author_avatar=”” testimonial_show_author_rating=”” testimonial_color_scheme=”color-light” testimonial_layout=”layout-slider” sc_loop=”1″ sc_nav=”0″ sc_dots=”1″ sc_nav_pag_style=”owl-control-shortcodes” sc_nav_pag_scheme_color=”owl-color-dark” sc_autoplaytimeout=”5000″ sc_mouse_wheel=”0″ el_class=”.textcolor-white”][\/vc_column_inner][\/vc_row_inner][vc_column_text]Korrelation, Cross-Korrelation und Aggregation von Ereignissen aus Security Information & Event Management (SIEM) und Logging, Network-based Intrusion Detection (NIDS), Host-based Intrusion Detection System (HIDS), Vulnerability Management and Assessment (VAS), Software Compliance (SOCO) und Advanced Threat Detection (Email & Web \/ ATD).<\/p>\n

Kundenspezifische Anforderungen werden in Erkennungsszenarien abgebildet.[\/vc_column_text][vc_row_inner][vc_column_inner width=”1\/3″][\/vc_column_inner][vc_column_inner width=”2\/3″][vc_basic_grid post_type=”portfolio” max_items=”1″ element_width=”12″ element_auto_responsive=”yes” special_item=”%5B%7B%22element_width%22%3A%221%22%2C%22item%22%3A%22springPostListing_HorizontalStyle01%22%7D%5D” item=”146″ grid_id=”vc_gid:1520581367107-45b597c5-35d0-2″ taxonomies=”17″ css=”.vc_custom_1511969755411{background-color: #ffffff !important;}”][\/vc_column_inner][\/vc_row_inner][\/vc_tta_section][vc_tta_section title=”Privileged Account Management” tab_id=”1495440325520-96080374-be29″][vc_column_text]<\/p>\n

Privileged Account Management<\/h3>\n

Nowadays, companies invest significant resources in building an infrastructure to ensure the business continues to run uninterrupted and in compliance with the legal regulations. A typical IT environment consists of hundreds or even thousands of servers, databases and network devices that are all controlled and managed through identities with far-reaching privileges. This includes, for example, accounts such as Root with Unix\/Linux, Administrator with Windows, Cisco Enable, Oracle system\/sys, MSSQL SA, SAPall. And it is actually these Super-User accounts that are often neglected, their session activities are difficult to track and their passwords are rarely changed or not changed at all.<\/p>\n

In certain cases, it is not just internal members of staff who need these identities, but also external partners. That is why the access data must be reliably protected by means of secure remote access and secure session initialisation. In many cases, passwords are also required for applications, scripts and configuration data; these are never changed and are completely exposed to prying eyes. As is understandable, this results in significant risks for businesses.<\/p>\n

Privileged Accounts pose the biggest vulnerability to security that organisations face today. If privileged accounts end up in the hands of external attackers or insiders wishing to cause malicious acts, they will be able to take control of an organisation\u2019s IT infrastructure, disable the security controls, steal confidential information, commit financial fraud and cause significant disruptions to the flow of operations. Almost all cases of data security breaches stem from stolen or abusive use of privileged login credentials. Given this growing threat, organisations need control systems that will proactively protect them from current cyber attack, detect and respond to such attacks before any of their critical systems or sensitive data are affected.[\/vc_column_text][vc_row_inner css=”.vc_custom_1496304454539{margin-top: 3em !important;margin-bottom: 3em !important;padding-top: 2em !important;padding-bottom: 2em !important;background: #222222 url(https:\/\/genesis.swiss\/wp-content\/uploads\/2017\/05\/genesis_background-10.png?id=65) !important;}” el_class=”.textcolor-white”][vc_column_inner][vc_column_text]<\/p>\n

To prevent the misuse of privileged accounts and to protect their valuable resources, companies have to:<\/h5>\n

[\/vc_column_text][spring_shortcode_testimonials testimonial_values=”%5B%7B%22testimonial_content%22%3A%22Determine%20and%20understand%20the%20extent%20of%20the%20risks%20linked%20with%20privileged%20accounts%22%2C%22testimonial_rate%22%3A%225%22%7D%2C%7B%22testimonial_content%22%3A%22Actively%20secure%20and%20monitor%20the%20access%20to%20login%20details%20for%20privileged%20accounts%22%2C%22testimonial_rate%22%3A%225%22%7D%2C%7B%22testimonial_content%22%3A%22Automate%20the%20control%20of%20privileged%20accounts%22%2C%22testimonial_rate%22%3A%225%22%7D%2C%7B%22testimonial_content%22%3A%22Isolate%20important%20resources%20from%20malware%22%2C%22testimonial_rate%22%3A%225%22%7D%2C%7B%22testimonial_content%22%3A%22Control%20privileged%20access%20to%20important%20resources%22%2C%22testimonial_rate%22%3A%225%22%7D%2C%7B%22testimonial_content%22%3A%22Monitor%20all%20activities%20in%20privileged%20accounts%20at%20command%20level%22%2C%22testimonial_rate%22%3A%225%22%7D%2C%7B%22testimonial_content%22%3A%22Report%20suspicious%20activities%20of%20privileged%20accounts%20to%20the%20security%20team%20in%20real%20time%22%2C%22testimonial_rate%22%3A%225%22%7D%5D” testimonial_show_author_avatar=”” testimonial_show_author_rating=”” testimonial_color_scheme=”color-light” testimonial_layout=”layout-slider” sc_loop=”1″ sc_nav=”0″ sc_dots=”1″ sc_nav_pag_style=”owl-control-shortcodes” sc_nav_pag_scheme_color=”owl-color-dark” sc_autoplaytimeout=”5000″ sc_mouse_wheel=”0″ el_class=”.textcolor-white”][\/vc_column_inner][\/vc_row_inner][vc_column_text]<\/p>\n

Is the risk underestimated?<\/h3>\n

A current study on the subject of security of user accounts reveals that over 80% of all large companies either do not know or seriously underestimate the risks associated with privileged user accounts. 30% of those questioned from these companies believe that the number of privileged user accounts in their respective company to be less than 250. But in a business that employ 5,000 people, this number can be easily assumed to be five to ten times greater. The study also showed that more than one third of those asked did not know where to find the privileged user accounts in their company.<\/p>\n

As the number of threats increases so have the regulations tightened regarding the requirements for the checks and monitoring of privileged user accounts. Companies that do not fully understand their own user account structure, can be under no illusion that they will pass the relevant audits, which will ultimately result in substantial fines. In addition to this, there is the risk of data leaks.
\n[\/vc_column_text][vc_row_inner][vc_column_inner width=”1\/3″][\/vc_column_inner][vc_column_inner width=”2\/3″][vc_basic_grid post_type=”portfolio” max_items=”1″ element_width=”12″ element_auto_responsive=”yes” special_item=”%5B%7B%22element_width%22%3A%221%22%2C%22item%22%3A%22springPostListing_HorizontalStyle01%22%7D%5D” item=”146″ grid_id=”vc_gid:1520581367117-2cb5c3f2-e597-8″ taxonomies=”8″ css=”.vc_custom_1497271710457{background-color: #ffffff !important;}”][\/vc_column_inner][\/vc_row_inner][\/vc_tta_section][vc_tta_section title=”Access Rights Management ” tab_id=”1495440325601-32611641-7a19″][vc_column_text]<\/p>\n

Access Rights Management<\/h3>\n

Monitoring and controlling who can access what data!<\/h4>\n

Authorisations regulate who can and cannot do what in their IT landscape. An important component of comprehensive data protection is ensuring that only the people who have the corresponding authorisation can access the respective data. Since the structure of authorisations have often grown over time and inherently become very complex, many companies no longer have a suitable overview of who is authorised to what and why.[\/vc_column_text][vc_row_inner css=”.vc_custom_1496304454539{margin-top: 3em !important;margin-bottom: 3em !important;padding-top: 2em !important;padding-bottom: 2em !important;background: #222222 url(https:\/\/genesis.swiss\/wp-content\/uploads\/2017\/05\/genesis_background-10.png?id=65) !important;}” el_class=”.textcolor-white”][vc_column_inner][vc_column_text]<\/p>\n

The challenges of Access Rights Management<\/h5>\n

[\/vc_column_text][spring_shortcode_testimonials testimonial_values=”%5B%7B%22testimonial_content%22%3A%22Who%20can%20access%20which%20resources%3F%20%5Cn%22%2C%22testimonial_rate%22%3A%225%22%2C%22testimonial_author_name%22%3A%22Unclear%20authorisation%20situation%22%7D%2C%7B%22testimonial_content%22%3A%22How%20much%20time%20is%20lost%20analysing%20and%20correcting%20access%20rights%3F%22%2C%22testimonial_rate%22%3A%225%22%2C%22testimonial_author_name%22%3A%22Missing%20documentation%22%7D%2C%7B%22testimonial_content%22%3A%22Have%20there%20been%20any%20unauthorised%20accesses%20and%20can%20these%20be%20traced%3F%22%2C%22testimonial_rate%22%3A%225%22%2C%22testimonial_author_name%22%3A%22No%20sustainable%20monitoring%22%7D%2C%7B%22testimonial_content%22%3A%22Can%20all%20the%20guidelines%20concerning%20compliance%20and%20data%20protection%20be%20met%3F%22%2C%22testimonial_rate%22%3A%225%22%2C%22testimonial_author_name%22%3A%22Laborious%20processes%20and%20workflows%22%7D%2C%7B%22testimonial_content%22%3A%22Are%20the%20processes%20frequently%20used%20for%20the%20user%20system%2C%20the%20assignment%20of%20permissions%20and%20the%20account%20management%20efficient%20enough%3F%22%2C%22testimonial_rate%22%3A%225%22%7D%5D” testimonial_show_author_avatar=”” testimonial_show_author_rating=”” testimonial_color_scheme=”color-light” testimonial_layout=”layout-slider” sc_loop=”1″ sc_nav=”0″ sc_dots=”1″ sc_nav_pag_style=”owl-control-shortcodes” sc_nav_pag_scheme_color=”owl-color-dark” sc_autoplaytimeout=”5000″ sc_mouse_wheel=”0″ el_class=”.textcolor-white”][\/vc_column_inner][\/vc_row_inner][vc_column_text]<\/p>\n

Why choose Access Rights Management<\/h3>\n

[\/vc_column_text][vc_row_inner][vc_column_inner width=”1\/6″][vc_column_text]<\/p>\n

Transparency<\/h5>\n

[\/vc_column_text][\/vc_column_inner][vc_column_inner width=”5\/6″][vc_column_text]Minimise risks (protect essential company information)[\/vc_column_text][\/vc_column_inner][\/vc_row_inner][vc_row_inner css=”.vc_custom_1497274196175{margin-top: -5em !important;}”][vc_column_inner width=”1\/6″][vc_column_text]<\/p>\n

Efficiency<\/h5>\n

[\/vc_column_text][\/vc_column_inner][vc_column_inner width=”5\/6″][vc_column_text]Efficient distribution of rights (automated and more efficient process in the IT department)[\/vc_column_text][\/vc_column_inner][\/vc_row_inner][vc_row_inner css=”.vc_custom_1497274196175{margin-top: -5em !important;}”][vc_column_inner width=”1\/6″][vc_column_text]<\/p>\n

Responsibility<\/h5>\n

[\/vc_column_text][\/vc_column_inner][vc_column_inner width=”5\/6″][vc_column_text]Data owner (involving the individuals responsible)[\/vc_column_text][\/vc_column_inner][\/vc_row_inner][vc_row_inner css=”.vc_custom_1497274196175{margin-top: -5em !important;}”][vc_column_inner width=”1\/6″][vc_column_text]<\/p>\n

Security<\/h5>\n

[\/vc_column_text][\/vc_column_inner][vc_column_inner width=”5\/6″][vc_column_text]BSI measures (as a building block for certified security)
\nIDM Integration (authorisation situation in the company structure)
\nAudit-compliant reports (for auditors, data protection auditors and data owners)[\/vc_column_text][\/vc_column_inner][\/vc_row_inner][vc_column_text]<\/p>\n

We pursue the following objectives with the introduction of a solution for the management of users and permissions in the Microsoft environment (AD):<\/h5>\n

[\/vc_column_text][vc_row_inner][vc_column_inner width=”1\/2″][vc_column_text]<\/p>\n

    \n
  • Knowledge and data are secured as the company’s greatest capital<\/li>\n
  • The requirements of the BSI Basic Protection and ISO 27001can be met<\/li>\n
  • The ability to monitor security-based activities in the company network<\/li>\n<\/ul>\n

    [\/vc_column_text][\/vc_column_inner][vc_column_inner width=”1\/2″][vc_column_text]<\/p>\n

      \n
    • Access Rights Management becomes a standardised and efficient process<\/li>\n
    • IT becomes more agile and can respond more quickly to your needs<\/li>\n
    • Restoring control on permissions and accesses.<\/li>\n<\/ul>\n

      [\/vc_column_text][\/vc_column_inner][\/vc_row_inner][vc_row_inner][vc_column_inner width=”1\/3″][\/vc_column_inner][vc_column_inner width=”2\/3″][vc_basic_grid post_type=”portfolio” max_items=”1″ element_width=”12″ element_auto_responsive=”yes” special_item=”%5B%7B%22element_width%22%3A%221%22%2C%22item%22%3A%22springPostListing_HorizontalStyle01%22%7D%5D” item=”146″ grid_id=”vc_gid:1520581367128-b99516ac-c896-2″ taxonomies=”11″ css=”.vc_custom_1499327592323{background-color: #ffffff !important;}”][\/vc_column_inner][\/vc_row_inner][\/vc_tta_section][vc_tta_section title=”Vulnerability Managemement” tab_id=”1501743779845-5d4b0ccb-340a”][vc_column_text]<\/p>\n

      Vulnerability Managemement<\/h3>\n

      Vulnerability Management refers to the process that aims to make companies or organisations less vulnerable to attacks and to minimise security incidents that are critical to the business.<\/p>\n

      How secure and compliant really is your network?<\/p>\n

      Skimming from company servers, credit card fraud, violation of privacy policies or complete operating failure: Vulnerabilities, these weak points within the IT infrastructure allow unauthorised individuals repeated access to sensitive data. They present extremely interesting targets for cyber criminals, and they allow them to penetrate the IT infrastructure of a company and wreak havoc once they are in.<\/p>\n

      Vulnerability Management<\/strong>, abbreviated as VM, is the regulated and continuous use of specialised security tools and workflows that actively help with the identification and elimination of security-based risks.[\/vc_column_text][vc_row_inner css=”.vc_custom_1496304454539{margin-top: 3em !important;margin-bottom: 3em !important;padding-top: 2em !important;padding-bottom: 2em !important;background: #222222 url(https:\/\/genesis.swiss\/wp-content\/uploads\/2017\/05\/genesis_background-10.png?id=65) !important;}” el_class=”.textcolor-white”][vc_column_inner][vc_column_text]<\/p>\n

      The aims of Vulnerability Management are to:<\/h5>\n

      [\/vc_column_text][spring_shortcode_testimonials testimonial_values=”%5B%7B%22testimonial_content%22%3A%22identify%20and%20fix%20software%20errors%22%2C%22testimonial_rate%22%3A%225%22%7D%2C%7B%22testimonial_content%22%3A%22revise%20functionalities%20or%20to%20make%20new%20threats%20known%22%2C%22testimonial_rate%22%3A%225%22%7D%2C%7B%22testimonial_content%22%3A%22adjust%20the%20way%20the%20software%20is%20configured%22%2C%22testimonial_rate%22%3A%225%22%7D%2C%7B%22testimonial_content%22%3A%22improve%20the%20way%20security%20risks%20are%20managed%20in%20order%20to%20counteract%20attacks%22%2C%22testimonial_rate%22%3A%225%22%7D%2C%7B%22testimonial_content%22%3A%22document%20the%20security%20status%20for%20order%20and%20in%20keeping%20with%20compliances%22%2C%22testimonial_rate%22%3A%225%22%7D%5D” testimonial_show_author_avatar=”” testimonial_show_author_rating=”” testimonial_color_scheme=”color-light” testimonial_layout=”layout-slider” sc_loop=”1″ sc_nav=”0″ sc_dots=”1″ sc_nav_pag_style=”owl-control-shortcodes” sc_nav_pag_scheme_color=”owl-color-dark” sc_autoplaytimeout=”5000″ sc_mouse_wheel=”0″ el_class=”.textcolor-white”][\/vc_column_inner][\/vc_row_inner][vc_column_text]Most companies use simple tools for VM, and some even free products. Security messages need to be scoured manually for hours on end with these\u00a0 isolated solutions\u00a0 \u2013 many of which turn out to be false alarms. But it is not just this accumulation of \u201cFalse-Positive-Alerts\u201d that gives the Security Manager a headache, the software versions of these \u201cself-made solutions\u201d also needs to be constantly updated manually.<\/p>\n

      With the Tripwire IP 360 solution, Genesis provides a fully advanced, fully integrated and automated Vulnerability and Compliance Audit solution.[\/vc_column_text][vc_row_inner][vc_column_inner width=”1\/3″][\/vc_column_inner][vc_column_inner width=”2\/3″][vc_basic_grid post_type=”portfolio” max_items=”1″ element_width=”12″ element_auto_responsive=”yes” special_item=”%5B%7B%22element_width%22%3A%221%22%2C%22item%22%3A%22springPostListing_HorizontalStyle01%22%7D%5D” item=”146″ grid_id=”vc_gid:1520581367134-82158128-c6c2-8″ taxonomies=”15″ css=”.vc_custom_1501746006768{background-color: #ffffff !important;}”][\/vc_column_inner][\/vc_row_inner][\/vc_tta_section][vc_tta_section title=”SIEM” tab_id=”1495440325444-68607cfd-7f5b”][vc_column_text]<\/p>\n

      SIEM & Log Management<\/h3>\n

      The area of IT security has changed considerably over recent years. The intensive use of Internet infrastructures represents a security risk for important business applications and services – not just in the operational area! Recently companies have had to face completely new scenarios triggered by the growing integration of business processes and connection of external partners to previously closed IT systems. The legal and regulatory framework has also been tightened considerably at the same time.<\/p>\n

      An SIEM (Security Information & Event Management System) that is precisely tailored to the security needs of the company needs to be implemented for the company to be able to detect attacks on the IT infrastructure and to be able to respond to them properly. In addition to this, Compliance Reporting – which provides proof that the legal and regulatory framework is being complied with – is an important indicator for the IT Security Risk Management.<\/p>\n

      But there is the problem that thousands of events have to be generated and vast quantities of data have to be individually analysed every day within the IT security. It is almost impossible to separate the wheat from the chaff. But since all the events, data and information generated by the security components are of importance, they have to be assessed and correlated with other data and information, in order to reveal the true significance. This process is extremely time-consuming, prone to errors and costs money.[\/vc_column_text][vc_row_inner css=”.vc_custom_1496304454539{margin-top: 3em !important;margin-bottom: 3em !important;padding-top: 2em !important;padding-bottom: 2em !important;background: #222222 url(https:\/\/genesis.swiss\/wp-content\/uploads\/2017\/05\/genesis_background-10.png?id=65) !important;}” el_class=”.textcolor-white”][vc_column_inner][vc_column_text]<\/p>\n

      Why choose SIEM<\/h5>\n

      [\/vc_column_text][spring_shortcode_testimonials testimonial_values=”%5B%7B%22testimonial_content%22%3A%22Use%20of%20the%20information%20available%22%2C%22testimonial_rate%22%3A%225%22%7D%2C%7B%22testimonial_content%22%3A%22Linking%20different%20events.%22%2C%22testimonial_rate%22%3A%225%22%7D%2C%7B%22testimonial_content%22%3A%22Monitoring%20of%20the%20infrastructure.%22%2C%22testimonial_rate%22%3A%225%22%7D%2C%7B%22testimonial_content%22%3A%22Systematic%20assessment%20and%20presentation.%22%2C%22testimonial_rate%22%3A%225%22%7D%2C%7B%22testimonial_content%22%3A%22Tool%20for%20analysing%20events.%22%2C%22testimonial_rate%22%3A%225%22%7D%5D” testimonial_show_author_avatar=”” testimonial_show_author_rating=”” testimonial_color_scheme=”color-light” testimonial_layout=”layout-slider” sc_loop=”1″ sc_nav=”0″ sc_dots=”1″ sc_nav_pag_style=”owl-control-shortcodes” sc_nav_pag_scheme_color=”owl-color-dark” sc_autoplaytimeout=”5000″ sc_mouse_wheel=”0″ el_class=”.textcolor-white”][\/vc_column_inner][\/vc_row_inner][vc_column_text css=”.vc_custom_1520526106795{margin-top: 1.5em !important;}”]<\/p>\n

      What does an SIEM solution consist of?<\/h3>\n

      [\/vc_column_text][vc_row_inner css=”.vc_custom_1495444445679{margin-top: -1.5em !important;}”][vc_column_inner width=”1\/2″][vc_column_text]Central Monitoring Platform<\/strong>
      \nSummarising all the log and event data and alarms from the various components (Firewalls, IDS, Server, Router, etc.) on a central log platform. The log and event data are converted into a uniform format (normalisation) and data that is not required is filtered out (aggregation).[\/vc_column_text][\/vc_column_inner][vc_column_inner width=”1\/2″][vc_column_text]Real-time Threat Analysis<\/strong>
      \nThe data and\/or events are correlated in real time using different methods (impact, statistical and rule-based correlation). This reduces the number of \u201cFalse Positives\u201d and false alarms as well as keeping a firm focus on the right and important events.[\/vc_column_text][\/vc_column_inner][\/vc_row_inner][vc_row_inner css=”.vc_custom_1495444449369{margin-top: -1.5em !important;}”][vc_column_inner width=”1\/2″][vc_column_text]Investigation and Countermeasures<\/strong>
      \nAny potential threat that is identified is then investigated and the necessary measures are taken to eradicate the threat (installation of an SW patch, adjusting the IDS or firewall systems).[\/vc_column_text][\/vc_column_inner][vc_column_inner width=”1\/2″][vc_column_text]Reporting and Audit<\/strong>
      \nReal-time and historical reports on security events can be generated and used for audit\/compliance check (ISO 27000\/001\/002\/003, GDPR, PCI, HIPAA, FINMA).[\/vc_column_text][\/vc_column_inner][\/vc_row_inner][vc_row_inner][vc_column_inner width=”1\/3″][\/vc_column_inner][vc_column_inner width=”2\/3″][vc_basic_grid post_type=”portfolio” max_items=”1″ element_width=”12″ element_auto_responsive=”yes” special_item=”%5B%7B%22element_width%22%3A%221%22%2C%22item%22%3A%22springPostListing_HorizontalStyle01%22%7D%5D” item=”146″ grid_id=”vc_gid:1520581367139-f8a08530-1894-10″ taxonomies=”7″ css=”.vc_custom_1497271692291{background-color: #ffffff !important;}”][\/vc_column_inner][\/vc_row_inner][\/vc_tta_section][\/vc_tta_tabs][\/vc_column][\/vc_row][vc_row][vc_column][spring_shortcode_content_template template=”callout-en”][\/vc_column][\/vc_row]<\/p>\n<\/div>","protected":false},"excerpt":{"rendered":"

      [vc_row content_width=”fullwidth” content_placement=”middle” text_color=”__” heading_color=”__” link_color=”__” link_hover_color=”__” el_class=”.vc_row-slider” css=”.vc_custom_1505975901397{margin-top: -1.5em !important;margin-bottom: -1.5em !important;}”][vc_column][vc_single_image image=”851″ img_size=”custom” img_size_custom=”2560×450″ alignment=”center”][\/vc_column][\/vc_row][vc_row][vc_column][vc_column_text] IT Security Management The aim of IT Security Management is to protect the data and services on which the information is based, in accordance with the value they represent for the company with…<\/p>\n","protected":false},"author":1,"featured_media":0,"parent":0,"menu_order":0,"comment_status":"closed","ping_status":"closed","template":"","meta":{"footnotes":""},"class_list":["post-1642","page","type-page","status-publish","hentry"],"_links":{"self":[{"href":"https:\/\/genesis.swiss\/en\/wp-json\/wp\/v2\/pages\/1642","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/genesis.swiss\/en\/wp-json\/wp\/v2\/pages"}],"about":[{"href":"https:\/\/genesis.swiss\/en\/wp-json\/wp\/v2\/types\/page"}],"author":[{"embeddable":true,"href":"https:\/\/genesis.swiss\/en\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/genesis.swiss\/en\/wp-json\/wp\/v2\/comments?post=1642"}],"version-history":[{"count":10,"href":"https:\/\/genesis.swiss\/en\/wp-json\/wp\/v2\/pages\/1642\/revisions"}],"predecessor-version":[{"id":1825,"href":"https:\/\/genesis.swiss\/en\/wp-json\/wp\/v2\/pages\/1642\/revisions\/1825"}],"wp:attachment":[{"href":"https:\/\/genesis.swiss\/en\/wp-json\/wp\/v2\/media?parent=1642"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}