Vous êtes sur la page 1sur 2

AlienVault ICS SIEM

Safe, Reliable and Secure Control System Visibility


AlienVault ICS SIEM: Security for Industrial Process Controls
Visibility into Control System network behavior Deployable without impacting Control System reliability Scalable for distributed assets from smallest to largest sites Enhances existing infrastructure Embedded Suite of Security and Management Tools

Highlights
Immediate Visibility of IT & Operational Network Traffic Behavioral Anomaly Detection finds Stuxnet or Other ICS Malware Forensic Auditing & Analysis Tools Integrates Seamlessly with Existing Process Control and IT Components Can be Partially or Fully Hosted as a Managed Service Operational Control System-Specific Rules and Detection Signatures Rugged Chassis for Harsh Remote Environments

AlienVault ICS SIEM Features


The AlienVault ICS SIEM is a security management platform specifically engineered for the process control systems. Included tools provide uninterrupted awareness of facility-wide security status. Unlimited integration supports all process system components: No-Touch deployments add security without impacting process reliability Immediate Visibility into system activity Reporting Platform for regulatory compliance Rugged DC-Powered Chassis for high reliability Industrial Control Systems face increasing regulatory mandates and escalating threats. AlienVault ICS SIEM provides immediate security control without reducing process reliability.

Practical Solutions to Pressing Security Concerns


Threats to the process control systems that manage critical infrastructure pose clear and present danger to the safety and reliability of these systems. More than 75% of operators report Denial of Service attacks and system intrusions today and fully one quarter have been the victims of extortion over actual or threatened cyber attack. Significant components of physical infrastructure have been damaged in widely publicized incidents which in turn intensifies the attention paid to these systems by security practitioners, hackers, organized crime and government agencies. AlienVault ICS SIEM is an industry-appropriate response to these threats. Built on the Security Information and Event Management technology used by more than half of all users worldwide, AlienVault ICS SIEM supports architectures ranging from entirely nonintrusive to tightly integrated with process systems. AlienVault Open Source SIEM (OSSIM) is a freely-available version of the AlienVault suite which distributed facility operators can download and use in their environments to make immediate gains in realized security. Organizations such as Metro Madrid one of the worlds largest urban rail networks stand as proof that OSSIM provides strategic value to the largest and most sensitive facilities both in practical application as well as the ability to quickly develop and deploy comprehensive proof-of-concepts.

USA 1901 South Bascom Avenue Suite 220 Campbell, CA, EE.UU. +1 408 465 9989

EMEA C/ Cronos, 63 28037 Madrid +34 91 515 1344

UK Davidson House Forbury Square, Reading RG1 3 EU, United Kingdom +44 0 118 900 1770

Central/Eastern Europe Reichenbachstrasse, 2 D-85737 Ismaning b. Mnchen, Alemania +49 151 2008 9292

LATAM Av. Presidente Masaryk, 473 Colonia Los Morales Polanco 11510 Mxico D.F. +52 55 9138 6040

Product Details
Security
Integrated Management and Detection Network, Wireless and Host Intrusion Detection ICS-Specific Attack Signatures Analytic Tools for Forensic Investigation Application Whitelisting Data Securely Time-Stamped Data Digitally Signed AES 3DES Encrypted Transport

High Performance
64-bit Architecture Enhanced Server and Database Tuned Operating System and Kernel

Stability and Reliability


7x24 Support Data Feed for Continuous Updates Hardened OS and Modules Redundancy and High Availability Fan-less DC-Powered Industrial-Grade Chassis

AlienVault Industrial Control Systems Solution

Safe, Reliable Security


Maintaining the stability of industrial control systems is the most critical aspect of securing critical infrastructure assets. AlienVault ICS SIEM provides robust monitoring without decreasing the safety and reliability of these systems. With integrated security tools as well as support for all IP-enabled ICS devices and applications, AlienVault ICS SIEM provides the framework to support any type or size of control system installation. From no-cost Open Source solutions to deployments deeply integrated with existing equipment, AlienVault ICS SIEM provides the most adoptable, adaptive and cost-effective security operations platform for control system installations. ics@alienvault.com

USA 1901 South Bascom Avenue Suite 220 Campbell, CA, EE.UU. +1 408 465 9989

EMEA C/ Cronos, 63 28037 Madrid +34 91 515 1344

UK Davidson House Forbury Square, Reading RG1 3 EU, United Kingdom +44 0 118 900 1770

Central/Eastern Europe Reichenbachstrasse, 2 D-85737 Ismaning b. Mnchen, Alemania +49 151 2008 9292

LATAM Av. Presidente Masaryk, 473 Colonia Los Morales Polanco 11510 Mxico D.F. +52 55 9138 6040