SGBox is a modular platform for controlling and managing ICT security. Its modular and distributed architecture means it can adapt to the various company needs. With SGBox, you can create an aggregate display with all the information gathered from log collection, vulnerability scan and endpoint status. The collected information feeds a correlation engine and analytics system to provide a fully network security posture and adopt automatic response against cyber security threats. SGBox SIEM is offered as on premise or cloud installation; single or multi-tenant version
SGBox SIEM Security Platform
Products & Services:
Collects and classifies data’s from any source type, to provide a clear overview of each organization securityData Investigation
Define correlation rules to detect abnormal behaviors through a simple and intuitive interface Identifies vulnerabilities, misconfigurations, and other security indicators Provides real-time information, analyzing performance and status of network components Track, collect and evaluate data relating to user activity Advanced detection and orchestration Support to companies in the certification and compliance path towards the main regulations, such as SAMA, GDPR, PCI-DSS, ISO27001, etc. Collects and analyzes data to identify potential or actual threats to the IT infrastructure
Predictable price: The license cost is based on the total number of devices that send logs without any limitations on the amount of the collected data or managed events per second (EPS)
Advanced threat detection & response
Vulnerability management
IT security Monitoring
User Behavior Analytics
SOAR
Regulation & compliance
Threat Intelligence Feed
Benefits:
Integrations: Through the Rest API’s SGBox guarantees interoperability with external solutions for the activation of automated responses to security threats.
Product architecture: An unlimited number of free remote collectors can be deployed to collect informations from complex or segment networks and remote offices.
Multi-tenant: MSSP’s benefits the power of the multi tenant console to manage the SGBox SIEM installations, whether they are on premises or in the cloud