Security Operations Center

For nearly two decades, Nuspire has been leading the industry with proprietary solutions for network security monitoring and management services from Nuspire's Security Operations Center (SOC). Many of the world’s largest and most distinctive companies have turned to Nuspire technologies and experts to keep their networks safe and efficient. 

The Nuspire SOC combines leading technologies and skilled experts to provide a level of service that is unmatched in the industry. Proprietary technologies, used by teams of security technicians and R&D engineers, provide an unprecedented security monitoring and response process backed by stringent service level agreements that take responsibility for customer networks.

SOC Technologies

SIEM – The NuSecure nuSIEM – backed by its distributed, parallel processing cloud – combines high speed, real-time analysis of Firewall/UTM and Windows Event logs with Intelligent Alerting and Dynamic Drill Down Reporting™. The foundation of nuSIEM is built upon a proprietary, fault-tolerant, extremely fast, clustered parallel data execution engine. The result of this big data cloud SIEM is faster data processing, faster security alerting, and ultimately, faster reaction to security events on the network.

trax™ – Nuspire's award-winning management and monitoring portal developed for Nuspire engineers, customers, and vendors. Trax™ combines monitoring, alerting, ticketing, asset management, project management and reporting. As a result of this system, customers see benefits from integration between systems, faster times for resolution with a more accurate security response, investigation, and reporting.

Unique Threat Intelligence – The blending of real-time, third party security intelligence (identified by devices placed all around the globe), databases of poor reputation or compromised hosts, advisories and bulletins derived from FBI active investigations of cyber threats as well as Nuspire’s own security research comprise the SOC advanced analytics capabilities. These qualities all combine into the NuSecure big data SIEM for normalization, correlation and aggregation. Once combined and ranked according to proprietary techniques, SOC engineers are able to utilize Nuspire's big data infrastructure to provide real-time analytics and alerts on the stream of logs received.

Vulnerability Management – Teams of R&D experts in the NuSecure labs are dedicated to vulnerability discovery and risk analysis. While some processes are automated within Nuspire systems, others are manually researched and investigated to evaluate threat, risk, and impact on customer networks.

Security Operations Center

 

Patch Management – Nuspire’s approach to patch management blends automatic processes with laboratory testing. While some critical security patches are dispatched to the field in real-time, others are first tested in a laboratory environment to ensure network operability and compatibility. The result is a secure network without business disruption. 

Configuration Management – Enterprises with many locations struggle with configuration management. While many companies strive for network standardization, “cookie cutter” configurations are generally not realistic. Nuspire has a unique solution to configuration management, changes, and auditing based on nearly two decades of working with many large, geographically dispersed networks – large and small.

SOC Human Analytics

Security Engineers – Nuspire employs a team of industry-leading security experts around the globe. Operating out of one of the Nuspire SOCs, engineers have the tools and guidance to solve today's security challenges. Security engineers are backed by industry-leading technologies along with an award-winning training and mentor program. Systems are designed to make sure the engineer working any security response ticket is trained on that specific security threat (through Nuspire’s learning management system), has all relevant information (through Nuspire's knowledge base), and the ability to escalate or pull in additional resources (through Nuspire’s ticketing system).  

Network Engineers – In order to understand a customer’s security posture, Nuspire must understand the customer’s network. Security events are often noticed first because of anomalous behavior on the customer network. Nuspire dedicates teams of engineers to find these threats through network operations management, monitoring, and analysis.

NuSecure Labs R&D – Security is not static. As threats evolve, and the security threat landscape changes, so must an MSSP. Nuspire dedicates some of the world’s leading experts to the research of security threats, developing solutions to combat the industry’s latest threats, and fine-tuning Nuspire systems to alert the security engineering team if that threat is found on customer networks. No MSSP can effectively manage and monitor customer networks without this R&D effort. Nuspire is proud to house an award-winning team at the forefront of this activity. 

Security Response Process

Alert Generation – Nuspire’s award-winning, big data cloud SIEM is the industry-leading solution to aggregate and correlate billions of events from devices and locations across the customer’s network landscape. The solution is designed to be scalable to any size network. This means Nuspire can offer an industry-leading service level agreement (SLA) around alert generation and response to security events on customer networks.

Alert Response – Nuspire takes responsibility for customer networks; that means providing an SLA around the response to security events on a customer network. After an alert is generated, trax™ algorithms quickly determine the alert type and assign to the appropriate engineer. This algorithm takes into account event type, ticket burden, availability of each engineer, and the skillset of the person assigned the ticket. This ensures the event alert is delivered efficiently and effectively to the correct engineer to remediate the issue.  

Alert Remediation – Nuspire goes beyond being just a “network alarm clock” to actually taking responsibility for the events on customer networks. This means Nuspire will not simply deliver an alert and close the ticket, but rather works with customers to help remediate the issue. While each customer requires customized support procedures, Nuspire is equipped to transfer a ticket, work with a customer’s security team, or take full responsibility for event response. All activity is logged in trax™, and can be viewed by the customer in real-time through transparent reporting and analytics. 

Client Reporting and Visibility – Nuspire delivers a unique level of transparency into network activity and response. Through trax™ a customer can see network alerts, tickets, and engineer responses in real-time. Customers can also see these activities mapped against SLAs through trax™ reporting features. Customers who do not wish to use trax™ can view metrics through Nuspire’s tablet interface, NuVu, or schedule reports to be delivered to their inbox on a regular basis. Corporate customers are also encouraged to work with account management for specialized reporting, service reviews, or specific reporting needs. This reporting environment allows for customers to have complete visibility of their network through scheduled reporting, ad hoc reporting, customized reporting, and one-on-one service reviews.

SOC 2 Certified

Nuspire is SOC 2 Compliant

Nuspire undergoes annual SOC 2 auditing against AICPS’s controls of security, availability and confidentiality. Nuspire’s SSAE 16/SOC 2 audited Security Operations Centers follow industry-standardized processes in order to provide the security, privacy, redundancy and flexibility to custom fit your organization’s needs.

 

Contact us using the form below to learn how Nuspire’s SOC services can augment your network security posture.


Nuspire Insights






Nuspire Infographic


Contact Us

Leave this empty: