Prelude SOC|  Drive your security

 

Prelude MAP

Map is a "synoptic" viewing module of your security network's status. Unlike the simplistic maps based on the GeoIP coordinates that may not represent your internal network, Map works on cartography that you can adapt to suit your needs. A security indicator is associated to each equipment. You can display its availability, vulnerability level, value and its compliance. Map enables you, with a simple look, to identify the state of a threat on each network's portion. Map is a vital module for a Security Operations Centre (SOC). It offers a global vision of the network's state and enables the center's manager to have a synthetic monitoring.

Prelude ASSET

The Asset module enables you to integrate the management of your IT infrastructure by overseeing its security. It is also possible to find from an alert, the details of a host as well as all the installed software on it. This information is essential, for example, to perform an update in the case of a detected security breach. The asset module offers the following features:

  • Automatic creation of pre-filled incident tickets
  • Incident workflow management ability 
  • Link between the tray of alerts and the inventory
  • Ability to access to the device's or application's history
  • Automatic infrastructure discovery

Prelude asset is very useful to simplify Prelude's operation on medium and large-sized infrastructures.

Prelude REPORT

Prelude SIEM is supplied with a management module of "standard" reports for security monitoring. The Report module provides more advanced report management capabilities. With the Report module, you can define customized reports, edit it online from the web-UI. Multiple Office export formats are available. It is also possible to generate new ad hoc reports for real-time data analysis. Prelude Report is necessary for organizations seeking to carry out complex and very specific reports.

Prelude VULN

Prelude Vuln is a vulnerability management solution. Integrated to the Prelude portal, it can launch and schedule vulnerabilities scans on the whole infrastructure. In addition, this module is connected to the Prelude correlator that gives the ability to correlate potential attacks with residual vulnerabilitie's infrastructure. So for a known alert, a known vulnerability will see its criticality level rising in the alert tray. Vuln is the essential complement to your SIEM to improve your security depth.