Managed SOC 24x7

Enterprise security is at stake

“Cybercriminals are persistent and determined, and they will continue to hack away at your systems, often with automated tools, until they find a crack they can exploit ”

Forbes

Enterprise cyber security is failing

A new Approach is needed to supplement or augment the current protection mechanism. Cyber intel & information sharing is imperative to improve situational awareness.

The average time for an organization to detect an intrusion is 204 days

69% of the victim organizations only learned of the breach after being notified by an external 3rd party

An average the adversary is likely operating in victim environment for more than 6 months before discovered

ISSUES AND CHALLENGES

Escalating Threats

Targeted attacks are the new norm

Disruptive Technologies

Innovation can introduce risk
Shifts in business environment

Unsustainable Practices

Few resources, no clear strategy
Too little time, too few resources and Inadequate tools

Inadequate Tools and Procedures

Too many silos, protection lacking Business Pressures
Competing Priorities

Adaptive Security Architecture

Have your own Intelligent Security Operations Centre 24×7 with

the following cyber security management capabilities:

Predict

Prevent

Detect

Respond

MSOC KEY OBJECTIVES

Objective I

Prevent and Detect Known & Unknown Threats

Objective II

Reduce Vulnerability To Persistent Threats and Insider Threat Attacks

Objective III

Minimize Damage and Ensure Timely Recovery

CYBER IMMUNE SYSTEM

Our Porposed Implementation Concept for Advance Cyber Security
Predictive, Preventive, Detective and Response Platform

MSOC PLATFORM INFRASTRUCTURE

Why Choose Dewaguard's SOC?

Always On

Proactive security monitoring by our analysts 24 hours a day. 7 days a week.

save money & time

Building and managing an in-house SOC are costly and complex

Expertise

Our dedicated team of security experts on your side, when you need them the most

Customer Success
Manager

Your CMS is responsible for easy onboarding, incident response, reporting, etc.

Rapid Time
To Value

Get your SOC up dan running in days, not months or years!

Monthly Security
Briefing

We will provide insights and make recommendations to keep your organization and network secure

MANAGED DETECTION & RESPONSE

ANALYSTS OVERVIEW

SOC Analyst - Level 1

Triage Specialist / Incident Responder

Reviews the latest alerts to determine relevance and urgency.
Creates internal tickets for alerts that require L2 Analyst review.
Runs vulnerability scans and reviews.
Managed security monitoring tools (netflows, IDS, correlation rules, etc).

SOC Analyst - Level 2

Incident Handler , Support Engineer

Reviews internal tickets from L1 Analysts.
Leveraged emerging threat intelligence to identify affected systems and the scope of the attack.
Reviews and collects asset data (configs, running processes, etc) for further investigations.
Determines and directs remediation and recovery efforts.

SOC Analyst - Level 3

Advanced Incident Investigation

Used as an escalation point for L2 Analysts.
Gets involved during an investigation of an advanced attack or after the fact forensics to determine the full extent of the breach.
Provides recommendations for next steps.

AN EXTENSION OF YOUR TEAM

CUSTOMER SUCCESS MANAGER

Manage onboarding and deployment.
Incident response manager.
Account maintenance.

DEPLOYMENT ENGINEER

Deploys and configures solution.
Provides Knowledge Transfer.
Documents and enables clean transition to SOC.

SOC TEAM 24/7

Day to day monitoring.
Phone / ticket response.
Incident investigation.
Vulnerability assessment.
etc.

PROJECT SEQUENCING

ONBOARDING

Initial Assessment.
Portal Access.
Develop Incident Response Plan.
Begin burn-in period.

DEPLOYMENT

Deployment planning and execution.
Regular review of detections (burn-in).
Deployment summary.

ENTER STEADY STATE

Reporting configured.
Monthly touchpoint.
Quarterly security briefing.

Try Dewaguard today

Your Trusted Cyber Security Service Guarding Your Network 24/7