ClearSkies™ Cloud SIEM Version 6.0

Overview

In keeping with our principle “to fulfil our clients’ needs and exceed their expectations”, we are continuously revamping our platform with new innovative features and enhancements. Such features and enhancements are a testament of our pioneering role in the uncharted territory of Big Data Advanced Security Analytics.

What’s New

Several new features are introduced in this ClearSkiesTM SaaS NG SIEM version 6.0:

Threat Intelligence

Threat Anticipation

The formula was designed to act as a filter for the different indicators being reported by the “Threat Intelligence” ServiceModule. It operates on a series of variables that were designed and engineered towards capturing the full characteristics of an indicator. Once those variables are derived, the formula evaluates the indicator and assigns it a score. The higher the score, the more important the indicator. Alert generation and incident escalation depend on the score confident level determined by the user.

Identity & Access

This new ServiceModule aggregates, visualizes and monitors the statuses of thousands of user accounts, drastically improving the auditing and insider threat detection capabilities of your organization with minimal effort.

It further integrates with and complements other ClearSkies™ SaaS NG SIEM ServiceModules, such as Advanced Security Analytics (User & Entity Behavior Analysis (UEBA)) and ClearSkies™ NG Endpoint Detection & Response (EDR) agent, for maximal insight generation. It helps to strengthen your security posture against insider threats.

“Identity & Access” ServiceModule empowers security personnel and upper management to effortlessly spot and timely investigate the following:

  • Inactive user accounts
  • Never-logged-on user accounts
  • Soon-to-expire passwords
  • Disabled accounts
  • Accounts of attention
  • Groups by size
  • Nested groups
  • Replication errors
  • Operating systems’ update status
  • Successful and failed logins
  • Which user did what from where and when
  • User account clutter in need of maintenance

To experience the full capabilities of the “Identity & Access” ServiceModule, download the “Identity & Access” Configuration Guide under ToolsDownloads in the ClearSkies™ Secure Web Portal, and then proceed with the guidelines laid out.

Important note: ClearSkies™ NG Endpoint Detection & Response (EDR) Agent v6.2.0 is a prerequisite to “Identity & Access”.

Version
6.0

Continue Exploring

SIEM

July 29, 2021
Digital Transformation is changing the world, and we are constantly staying ahead of the curve to anticipate the digital risks emanating from the rapid expansion of the information-threat landscape. In keeping with our p…
+ Read More

SIEM

June 22, 2021
In keeping with our principle “to fulfil our clients’ needs and exceed their expectations”, we are continuously revamping our platform with new innovative features and enhancements. Such features and enhancements are tes…
+ Read More

Endpoint

June 10, 2021
ClearSkies™ EDR Agent v6.4.1 is a comprehensive Endpoint Detection & Response solution, fully integrated with ClearSkies™ Cloud SIEM. It complements the detection of and response to never-before-seen targeted attack…
+ Read More
Demo request

See it in action!

Request a live demo from our representatives to experience the value of ClearSkies™.

talk-to-an-expert-3
An Odyssey Product