Macquarie Government has launched a new cyber security information and event management-as-a-service (SIEMaas) platform.
It was developed using the Splunk Enterprise Security platform and provides a portal where government agencies can monitor all ICT systems across on-premises and public cloud environments.
The customisable portal provides deep insights into both internal and external threats and attacks, Macquarie said.
The service is hosted within an Australian Signals Directorate (ASD) GovZone cloud environment and can be provided as a standalone service or bundled with Macquarie’s security operations centre (SOC) as-a-service.
“Now that ICT environments feature multiple security layers to protect diverse and often dispersed organisations, companies are facing information overload while trying to secure assets, data and users," Macquarie Government managing director Aidan Tudehope said.
"By unifying all this information in one place, SIEMaaS provides a single view for security events across all facets of a business shoring up the weakest links in an organisation’s cyber-defence.”
“Previously, this level of cyber defence sophistication was out of reach for most mid-sized government departments, but SIEMaaS offers an affordable solution.”
The Macquarie Telecom Group-owned unit launched its SOC in September, offering 24/7 event monitoring and alert response to government agencies from its existing SOCs in Sydney and Canberra.
The operation will involve 120 security staff, both based in-house at Macquarie Government or seconded to government agencies.