Cloud SIEM

Nuspire’s cloud-based SIEM (Security Information Event Management) solution, nuSIEM, provides organizations with a platform for security information event management, visibility, logging, alerting, and reporting. The foundation of nuSIEM is built upon a proprietary fault-tolerant, extremely fast, clustered parallel, data execution cloud SIEM engine. Nuspire's SSAE 16/SOC 2 Certified Data Centers provide a solid foundation for operations including multiple redundancies in power, cooling, and internet connectivity. 

The ability to scale the nuSIEM cloud is virtually unlimited and can be quickly achieved through scale-out architecture. Log data is replicated multiple times throughout the cloud storage systems featuring automatic failover and load balancing. The Internet connectivity for the nuSIEM cloud is controlled through high performance BGP intelligent routers, which continuously provide best-path route advertisements.

 

Visibility

Nuspire’s nuSIEM provides complete visibility into all aspects of client-owned, UTM/next generation firewalls, including application control, web content filtering, intrusion prevention, network traffic, vulnerability scanning, data leak prevention, antivirus, VPN/remote access, wireless network connectivity and more. nuSIEM also provides insight into network devices, such as switches, access points, servers and end points.

Cloud SIEM

Cloud SIEM Monitoring

Device Monitoring

Monitor a single - or thousands - of UTM/firewalls and server events easily through real-time dashboards and alerts driven by atypical usage patterns. 

Cloud SIEM reporting

Reporting

Millions of reporting views are available via aggregated dynamic drill-down reporting, executive overview reports and compliance reports. Reports can be generated “ad hoc”, on the fly, or scheduled for intervals and dates can be chosen by the user.

Cloud SIEM Alerting

Alerting

Users can choose from hundreds of pre-configured alerts including, online status, system events, botnet traffic, and AI smart alerts identifying atypical usage patterns. Custom alerts can be configured by user preference. 

Cloud Based Solution

Cloud-based Solution

Built upon distributed, parallel processing, fault-tolerant infrastructure allows for unlimited data growth, unparalleled speed and zero maintenance headaches.

Cloud SIEM Managment

Device Management

Visibility into device management operations is available through features such as automatic configuration backups with change control/diffing, status reporting, dynamic DNS services, and contract awareness.

Cloud SIEM Logging

Device Logging

Nuspire’s nuSIEM provides device logging for multiple environments, devices, and manufacturers. Logging can be achieved through direct, secure, data transfer from the device, from agents installed on the devices, or collected through collectors and sensors. Compliance or policy requirements for data retention can be met with live and archived data storage. nuSIEM provides multiple options for data storage and retention. See your Nuspire Master Service Level Agreement (MSA) or solution Scope of Work (SOW) for specific data storage options. 

Threat Intelligence

As a global Managed Security Service Provider (MSSP) and Cloud SIEM provider, Nuspire has tens of thousands of diverse devices that feed billions of security context-rich log events into the nuSIEM solution every day. Many of the manufacturers’ devices that feed these rich security metadata logs into the SIEM are active members of the Cyber Threat Alliance.

nuSIEM utilizes social and open source threat intelligence to target and alert upon IOCs (Indicators of Compromise) and threats. nuSIEM can identify both network communications as well as malware within files on Windows and Linux systems when using nuSIEM’s FIM (File Integrity Monitor).

nuSIEM’s social threat intelligence utilizes multiple source points for threat intelligence and known, compromised Internet addresses. It uses automated methods to collect IP reputation information and perform real-time updates against incoming log data. Through threat reporting, current threat intelligence can be applied against historical log data to identify previously unknown security threats. Nuspire’s dedicated Security Analytics Team (SAT) manages the Cloud SIEM engines and alerting processes as part of the nuSIEM service.

SOC 2 Certified

Nuspire is SOC 2 Compliant

Nuspire undergoes annual SOC 2 auditing against AICPA’s controls of security, availability and confidentiality. Nuspire’s SSAE 16/SOC 2 audited Security Operations Centers follow industry-standardized processes in order to provide the security, privacy, redundancy and flexibility to custom fit your organization’s needs.

 

Contact us using the form below to learn how Nuspire’s SOC services can augment your network security posture.


Nuspire Insights






Nuspire Infographic


Contact Us