Australian managed security service provider, IPSec, has expanded the capabilities of its Security Operations Centre in Melbourne with the addition of a security information and event management (SEIM) solution from LogRhythm.
The melbourne-based company has launched its IPSec Guard information security monitoring service to identify suspicious events or activity on a network, which LogRhythm technology forms a key part of.
IPSec director of business development, James Pemberton, told ARN that the company’s long time focus on managed security services would be bolstered by the addition of the SIEM capability.
“It gives us the ability to take log sources from pretty much anything you can imagine and be able to correlate that data with big analytics power without putting heavy infrastructure at the client site, you only need a couple of basic agents that don’t require their own resources to run,” he said.
“These agents can efficiently compress and send us all the information in detail to look at in real time and correlate between all the customer’s different servers, desktop realities, gateway security infrastructure and whatever else they are running at sites around the globe and be able to identify when a threat is emerging around their gateways, within their internal environment.
“That is a huge need in information security today, because the truth of advanced persistent threat and advanced malware is that it is going to get through even the world’s best security architectures at the gateway.
“Organisations need to know of such an event fast enough, so they can isolate it quickly enough to respond and minimise the payload and stop data being exfiltrated or damaged,” he said.
LogRhythm director of sales A/NZ, Simon Howe, said there was an increasing gap in security expertise within some organisations and managed service providers were increasingly being called on to plug that gap.
“Many organisations have the desire and the requirement for SIEM technology, but do not have the capability so many of them are turning to service providers to achieve that outcome,” he said.
IPSec director of operations, Benjamin Robson, said the company chose LogRhythm as its partner following an extensive 18-month assessment of all major SIEM solutions providers.
“We assessed every solution for performance, total cost of ownership (TCO) and usability and the only solution that met all our technical requirements and provided very strong value and TCO was LogRhythm,” he said.
“The very robust TCO for LogRhythm allows us to deliver IPSec Guard to a business tier that would otherwise struggle to maintain a SIEM solution with 24/7 response capabilities.”