En
En
Products
SearchInform DLP
SearchInform Risk Monitor
SearchInform ProfileCenter
SearchInform FileAuditor
Data protection and classification
Access rights audit
User activity audit, investigation
Compliance
Use case: access control and change management
Use case: user behavior and insider detection
Use case: eDiscovery
Use case: file cleanup
SearchInform SIEM
TimeInformer
Cloud solutions
Third-party integration
Services
Services
SearchInform for MSSP
How to max out SearchInform services
Compliance
Saudi Arabian Monetary Authority
GDPR compliance with SearchInform
Personal Data Protection Bill
Resources
White Papers
Research
How to
Practices and use cases
Videos
Partners
Become a Partner
Partner login
Contact us
Products
SearchInform DLP
SearchInform Risk Monitor
SearchInform ProfileCenter
SearchInform FileAuditor
SearchInform SIEM
TimeInformer
Cloud solutions
Third-party integration
Services
Services
SearchInform for MSSP
How to max out SearchInform services
Compliance
Saudi Arabian Monetary Authority
GDPR compliance with SearchInform
Personal Data Protection Bill
Resources
White Papers
Research
How to
Practices and use cases
Videos
Partners
Become a Partner
Partner login
Contact Us
Book a return call
HomeProduct NewsSearchInform Officially Announces Launch of Propietary SIEM
BACK TO BLOG LIST
SearchInform Officially Announces Launch of Propietary SIEM
22.11.2016

On 22 November 2016, SearchInform announced the launch of SearchInform Event Manager, a completely new system used to detect threats and information security policy violations through the analysis of corporate system events.

A great many of data sources makes it almost impossible to control manually all events in IT infrastructure of a company. There is a risk to miss some incident (especially, when it occurred after a series of events from different sources), fail to detect or determine the incident cause. SearchInform Event Manager is aimed to solve these issues.

SIEM is a system used to collect, monitor, and analyse in real time security events from various corporate systems. The software collects data from various sources, analyses it, then fixes incidents and notifies concerned parties about them.

SearchInform Event Manager stores all incidents in the own database, which allows generating reports and running search within all the system operation period. The symbiosis of SearchInform Event Manager and SearchInform Data Leak Prevention allows you to drill down violations and anaylse incidents into the tiniest particulars.

The system’s sources of events are logs of Active Directory, Windows Event Log, antiviruses, Exchange mail server, DBMS, operations with files in the file servers and user computers. The list of sources is to be extending.

The program can give the first results immediately after the installation as it has a wide range of pre-set rules and is supplied off-the-shelf. Yet, if a client wants to create own rule in the system, SearchInform experts will help to do it.

“We started development of SIEM upon our clients’ request. By the end of 2016, some major customers plan to stop using similar solutions of foreign developers and switch to locally produced systems. But good offers from Russian developers are lacking in the market,” said Chairman of the Board of Directors of SearchInform Leo Matveev. “The problem of majority of such systems is complicated customization and operation. We tried to make our system pre-set to the maximum and easy-to-understand for information security officers. The software can work almost out-of-box, and reasonable price makes the product affordable even for mid-sized business.  SearchInform Event Manager is a completely new system, not a copy or analogue of what is already presented in the market.”

In the future the company plans to increase sources and pre-set rules for SIEM. The system will be capable to not only analyse data but also control changes in the users’ behavior through correlation analysis. By the end of 2016, there will be developed traffic of network equipment, virtualization environments, terminal servers, and agents of workstation control. The number of supported antiviruses will be increased, NetFlow and Windows connector will be added.

BACK TO BLOG LIST
Also read:
SearchInform Risk Monitor Updates: new User Interface and Enhanced Transparent Control Capabilities
Employee monitoring Risk management
15.04 Products News
Access Management to Files in SearchInform FileAuditor was Simplified for Rapid Incident Response
Internal audit DCAP
21.03 Products News
Subscribe to get helpful articles and white papers. We discuss industry trends and give advice on how to deal with data leaks and cyberincidents.
Products and Services
FileAuditor
DLP
Risk Monitor
ProfileCenter
SIEM
MSSP
Cloud Deployment
Company
Contact
About Our Company
Company Portfolio
Our Clients
Press About Us
Press Kit
Resources
White Papers
Third-party integration
Research
Practices and use cases
Videos
News
Company News
Product News
Events
Blog
Challenges
Compliance
Data Loss Prevention
Investigation
Data at Rest Discovery
Data Encryption
Data Visibility
Data Classification and Protection
Data at Rest Discovery
Time Tracking and Employee
Monitoring
Corporate Fraud Mitigation
Roles
C-level executive
Risk manager
Internal audit officer
Compliance manager
Information security analyst
Chief Human Resources Officer
Industries
Business Services
Education
Financial Services
Government
Insurance
Manufacturing
Healthcare
Retail
Energy
Hospitality
Construction
Partners
Become a partner
Partner login
SearchInform products are recognized by
Gartner The Radicati Group
Follow us:
© 2024 SearchInform LTD All rights reserved.
Terms of Use
Licence
Privacy&Cookies