SOC Modules | Improve your security
Prelude SIEM offers all the necessary features to set up the monitoring and control of your security. For more specific environments we propose optional modules that meet different specific needs:
- MAP: Synoptic network and threat representation module
- Asset: Complete ITIL management module (inventory, tickets, contracts, etc.)
- Vuln: Vulnerability Management Module
- CTI: Cyber Threat Intelligence Module;
- Safe: Innovative Endpoint protection
Prelude MAP: Mapping
Map is a "synoptic" visualization module of the security status of your network. Unlike simplistic maps based on GeoIP coordinates that cannot represent your internal network, Map works on maps that you can adapt to your needs. A safety indicator is associated with each of your equipment. You can view its availability, vulnerability level, value and compliance. Thus, Map allows you to identify the threat status on each portion of the network with a simple glance. Map is an essential module for an Operational Security Centre (SOC). It provides an overview of the state of the network and allows the centre manager to have a synthetic follow-up.
Asset module: ticket and equipment management
Vuln module: vulnerability scanner
Vuln is an interface with OpenVAS that allows you to remotely control your OpenVAS (programming and launching scans) and query it to use vulnerability data within the correlation. If you have an OpenVAS installation, simply indicate its configuration in Prelude. If you do not have an OpenVAS we can install and configure it for you. If you have another scanner model we can study the development of a connection with Prelude SIEM.