Transform AlienVault® USM™ into an enterprise-grade SOC with Redscan’s Managed Detection & Response Service
As a Platinum MSSP AlienVault partner, Redscan offers organisations that have either deployed or are considering AlienVault’s Unified Security Management™ system the ability to extend their defence against modern cyber threats with a fully-managed 24/7 security operations centre.
Through our award-winning managed detection and response services, ThreatDetect™, Redscan extends a business’ threat monitoring and detection capabilities, while reducing the budgetary and operational challenges of managing cyber security in-house.
Choosing ThreatDetect ensures that organisations are able to realise the power of the AlienVault SIEM, intrusion detection and behavioural monitoring platform, while at the same time benefiting from:
Leading security professionals
Our team of CSOC security analysts, engineers and researchers are trained to the highest professional standards, with qualifications including CISSP, CISSP- ISSAP, CISA, CISM, CEH, OSCE, OSWP & CREST. This ensures effective defence against the latest cyber threats.
Greater threat intelligence
By combining continuous in-house cyber research with live cyber threat intelligence from CiSP, CERT-UK and other leading exchanges and sharing programmes, we ensure organisations benefit from the latest security intelligence to inform security investment decisions and more effectively manage security risk.
Additional cutting-edge technologies
As an AlienVault MSSP (Managed Security Service Provider), Redscan ensures that organisations benefit from the power of Alienvault’s SIEM, intrusion detection and behavioural monitoring platform, while at the same time taking advantage of other cutting-edge protection technologies without the extra cost or hassle of setting up and maintaining additional systems.
CyberOps, Redscan’s all-in-one intelligence platform, provides complete visibility of your organisation’s cyber security posture. It offers true incident reporting, real-time status monitoring, streamlined workflows and customisable dashboards for complete threat visibility and rapid detection and response.
Reasons to choose us as your preferred AlienVault MSSP
Certified system experts
Redscan’s AlienVault support team are vastly experienced at deploying, configuring and managing AlienVault USM to help businesses that lack time and resources to quickly maximise their defences. Whether considering an on-premise (virtual or physical) or cloud-based USM deployment, Redscan provides the expert assistance needed to adopt the best solution.
Extensive AlienVault USM monitoring
Extended in-depth Redscan monitoring of the USM or USM Anywhere platforms beyond the tools supplied by AlienVault provides complete confidence that all system components, including sensors, servers and loggers, are operational and functioning optimally. ThreatDetect supports on-premise, virtual, cloud and hybrid environments.
Detailed incident detection
Monitoring network infrastructure to detect signs of attack can be time and resource intensive. A typical network can contain hundreds of assets such as servers, firewalls and end points, which all need to be checked and analysed. With individual assets capable of generating, on a daily basis, hundreds of Events per Second (EPS), having to monitor and interpret so much raw and complex system information to identify threats can be like finding a needle in a haystack.
By hunting through logs and filtering out large volumes of false positives and background noise to uncover genuine security incidents, Redscan's AlienVault support team does all the heavy lifting to enable in-house IT teams to concentrate on system maintenance and other core administrative tasks.
End-to-end service quality
By providing detailed threat information and effectively managing and tracking incidents from detection through to resolution, Redscan ensures that businesses receive the best possible assistance to remediate threats.
CyberOps, Redscan’s secure online portal, delivers swift notification of genuine threats pre-qualified by security specialists. Redscan’s friendly and accessible SOC team is on-hand to provide help and advice around the clock.
Advanced system tuning
AlienVault’s predefined correlation directives are great at identifying known threat actors but the relentless nature and evolution of attacks means that zero-day vulnerabilities can be missed.
By proactively surveying the security landscape and working closely with businesses to define custom use cases, Redscan’s dedicated analysts actively implement custom rule sets that parse log files to pinpoint a broader range of threats.
Full Red Team insight
Close collaboration between Redscan’s ‘red team’ ethical hackers and ‘blue team’ defenders ensures that organisations benefit from internal threat intelligence.
Commissioned by businesses to conduct in-depth penetration testing and real-world attack engagements, Redscan’s team of non-malicious white hats utilise their knowledge of the latest hacking techniques to highlight lesser-known security vulnerabilities. This highly valuable insight is shared with the blue team to help develop new AlienVault event correlation rules and further strengthen defences.
Added threat intelligence
Choosing Redscan as your AlienVault MSSP partner ensures that your organisation benefits from a wide range of security intelligence beyond the AlienVault Open Threat Exchange (OTX). This includes data from professional bodies, Red Team engagements and anonymous client data.
One of a select few companies to be a part of the Cyber-security Information Sharing Partnership (CiSP), Redscan enables businesses to leverage the insight of high-profile members including the Security Services, GCHQ and the National Crime Agency.
Hassle-free system maintenance
Routine maintenance of AlienVault USM and other security systems has the ability to disrupt critical security processes. By conducting all updates, upgrades and backups, and monitoring important configuration files as part of all work undertaken, Redscan alleviates problems that regular maintenance can cause.
Clear and concise reporting of threats
AlienVault USM’s in-built reports provide key threat information but reviewing these in isolation can be a challenge for non-technically minded personnel.
To supplement information supplied by the AlienVault USM platform, Redscan’s CSOC team of experts provide, as part of our ThreatDetect service, regular security reports and clear, actionable remediation advice.
Redscan is a platinum AlienVault partner. Our team of dedicated AlienVault qualified security experts are trained to the highest professional standards, ensuring they have the skills and experience to help your organisation detect and respond to the latest cyber threats.