RuSIEM
RuSIEM is a commercial SIEM system (Security Information and Event Management), providing:
- Real-time correlation, visualization and data retrieval.
- Long-term storage of raw and normalized events.
- Built-in incident management and reporting.
RuSIEM modules:
- RuSIEM Monitoring: Monitoring of IS, nodes, applications. Monitors the state of the IT infrastructure and identifies violations.
- RuSIEM loC: Protection against unauthorized access. Detects attempts to hijack corporate devices.
- RuSIEM Analytics: Finding data leaks. Uses AI, ML, asset management to detect threats.
RvSIEM Free: Free version of LM (Log Management).
- Reports, normalization, data retrieval.
- Long-term storage of events.
- Dashboards and visualization tools.