UNIFY YOUR SECURITY
MONITOR YOUR SYSTEM
The monitoring of safety of an information system remains a disjointed activity from monitoring performance and availability. There are several reasons behind this separation. Historically, the performance monitoring is a long-standing activity under the responsibility of the operating teams. The controlling of security appeared more recently and started in teams of experts and security consultants not involved in the daily operation of parks and networks.
The partitioning being a pervasive principle in security, it also helped to separate the two activities. Finally, SIEM were originally developed by specialized companies in security which did not have expertise in the area of monitoring of performance and operations at large, which has strengthened this dispersion.
The benefits of convergence
Given the urgent need to optimize operating costs while improving efficiency, there are many arguments in favor of a merge of these two activities:
- Whether the cause of failure is due to an intrusion or a malfunction, the consequences for the company are equivalent. It is sometimes difficult to differentiate a malicious act from an involuntary incident. It is therefore inconsistent, given that we oversee incidents, to partition these two activities.
- We find very similar concepts in the two activities: monitoring, correlation, alert management and alarm, workflow, etc.
- These two activities also share many tools: inventory management, download tools, knowledge base, etc.
- Several information are common to both environments: Retail inventory, equipment criticality, network topology, recovery logs, network traffic analysis, etc.
- Each network device has dual information that are solicited or managed sometimes redundantly due to a lack of convergence of treatments.
- Reflecting the ITIL method, the performance monitoring activity has already proven expertise whose safety oversight could benefit greatly.
- The most expensive element in the operation of monitoring, either availability or security, remains HR. Operating a convergence between these two activities can help in some cases to pool level 1 resources, which has a significant result on the overall operating cost of the computer system.
Unity 360, unify your security
Based on these findings and confirmed by its experience in the field, CS worked for several years at the convergence of these two tools. Both solutions remain autonomous and independent but we built the framework necessary for their simultaneous use in the pack Unity360.
The features offered by Unity 360
Among the features offered by Unity360 you will find:
- A common portal for both applications.
- Use of interfaces tracking alerts and alarms sharing the same techniques, look and feel.
- Availability of transverse modules: inventory management, management of tickets, reporting tools.
- Capacity of the two applications to communicate them to notify one another.
In the end you have a single application to manage both your needs while managing to combine economy and efficiency!
Streamline and optimize saving
By opting for our convergent offer, you benefit of:
- The rationalization of costs, in terms of product license with interesting shared offers,
- The rationalization of operating costs with common modules and possibilities of pooling of Level 1 teams
- The enhanced efficiency of the entire system by sharing and streamlining tools and methods, you reduce your overall operating costs, while improving their efficiency. Comprehensive information is directly available to improve the contextualization of the incidents, errors of interpretation are no longer possible, the complete processing chain is better mastered, etc.
Download Unity 360 brochure
For any further information