Use cases

They trust us


Prelude SIEM is present on the cybersecurity market for 20 years. Prelude SIEM has an international reputation that has been strengthened through our partner network. Standards compliance, its high modularity, performance and intelligent data processing are all characteristics that make it a unique tool deployed in multiple sectors from SMEs to large administrations.

logo ministère des finances

“The implementation of the SOC is a significant step in managing cybersecurity for Defense Staff services and should enable us to take an important step in the taking over of our information system”

Branch of IT Central Services


  • Setting up an SOC within the General Secretariat of the Finance Ministries

Perimeter and volume:

  • 2,000 users, 4,000 facilities, 10,000 EPS
  • Turnkey project: Plan, Deploy, Training
  • Totally redundant architecture (2 sites)
  • Guidance on the definition of a monitoring strategy

Choice factors:

  • Compliance with standards IDMEF and IODEF
  • Support in the deployment of the solution
  • Redundancy capability of the solution
  • Functional richness of the solution

“We have useed Prelude for 5 years and it has become an indispensable tool for managing security events, the investigation of the incident and associated response. Thanks to its modularity, Prelude easily handles the expansion and evolution of our infrastructure without mitigating its ability to collect and correlate critical security events. For us it is also very important to be able to ensure compatibility with different types of systems that are Monitord.

Prelude successfully manages all our data sources and gives us the ability to add new ones at lower costs. It gives us the ability to use the centralized approach in managing our security solutions and ensure a high level of reliability to our information system.

RSSI – AlfaStrakhovanie Insurance


  • AlfaStrakhovanie is a large insurance company with a large geographically distributed infrastructure whose network covers more than 1000 km from Kaliningrad to Kamchatka.


  • 6000 hosts 24,000 EPS
  • 400 branches, 6,000 employees
  • 2 datacenters
  • 1 data processing center

Perimeter Surveillance:

  • Antivirus on all employee computers (+ 6000)
  • OSSEC (Microsoft Active Directory and Windows event logs)
  • The collection of event logs (* nix, BSD, AIX)
  • The messaging system
  • Removable media DLP system (on all employee computers)
  • Antivirus for Web Gateway
  • IPS (Snort initially. Today, it is a proprietary solution)
  • The monitoring of network devices
  • VoIP Servers

Factor selection:

  • Adaptability of the solution
  • Real-time processing power, reporting and operating interfaces
  • Prelude compatibility with open source probes OSSEC

Company world leader in digital security and smart cards


  • In the framework of the implementation of its PCI DSS compliance and Visa this company has decided to establish a SIEM to enhance its security level.

Perimeter and volume:

  • A data center, equipment 1000, 4000 EPS
  • N-Tier Architecture
  • Redundant platform
  • Using auditd probes on Enpoint

Choice factors:

  • Native compatibility IDMEF Prelude with the probes OSS auditd and OSSEC
  • PCI Compliance Reporting and Visa
  • Interconnection capacity platforms via the bus Prelude
  • Quality of the support in the infrastructure migration

Prelude was selected by the Ministry of the Armed Forces for deployment in a highly secure and confidential system. As part of this project, the customer also accepted Vigilo NMS offer from the Unity 360 pack.


  • Implementation of a convergent solution NOC / SOC on a set of sites of the Ministry of Defense

Project objectives:

  • Turnkey project: Plan, Deploy, Training and Serenity
  • Control and ration operating costs through convergence NOC-SOC
  • Increase operational efficiency systems
  • Be accompanied by a cybersecurity expert during changes in scope
  • Rely on a French and trusted partner in the field of cybersecurity

Prelude SIEM asset:

  • Mastery and sovereignty of the software production line
  • Rich functionality
  • Human Machine Interface available in French
  • Modularity and decentralized deployment capacity
  • Skills transfer capacity to the teams of the Ministry
  • NOC-SOC convergence with the Unity offers

The project volumetric:

  • Target volume: 2500 equipment 10 000 EPS
  • A highly sensitive and secure environment
  • distributed architecture

The robustness and sovereign mastery of the solution were important factors in the choice of the customer.

Logo PIA

Future Investment Plan

“On the advice of the ANSSI (French National Cybersecurity Agency) and the Ministry of Defense, the administration declared the CS company and its SIEM Prelude under the Investments for the Future programs. At the heart of the digital security industry, the objective of the project Prelude NG is the modernization of Prelude SIEM to make French SIEM of the market. The project is spread over 3 years with a budget of several million. “


  • Support the development of a sovereign SIEM solution for OIV (Vitally Important Operators)

The project’s main sites:

  • Optimization of event processing performance and Big Date capabilities
  • Implementation of new defensive and metric correlation techniques
  • Expanding the range of sensors and event processing
  • Development of a functional assessment technique of Siems
  • Strengthening CID axes (confidentiality, integrity and availability)
  • Support regulatory compliance
  • New generation graphical analysis technique
  • Improved ergonomics and operating features of the solution.


  • French administration
  • Protection of local offices of the Ministry of ecological and solidary transition over forty or so sites

Perimeter and volume:

  • 300 equipment on 40 sites
  • Distributed architecture
  • Local buffer memory
  • Professional Services: Plan, Deploy, Training

Choice factors:

  • Decentralization capacity
  • Security Transfer
  • Accompaniment of the deployment and training

visit our other pages

Why choose Prelude SIEM?