Sinarsky Pipe Plant has implemented an IB management system based on the MaxPatrol SIEM solution

2020: Creation of the IB event management system

The Sinarsky Pipe Plant (SinTZ), part of the Pipe Metallurgical Company (TMK), completed a project to create an information security event management system based on the SIEM MaxPatrol. This was announced on January 27, 2021 by Positive Technologies.

The system was deployed in the enterprise in three months. Specialists Ural Safety Systems Center (USSC) and SinTZ organized monitoring of information security events at more than 200 sites, including servers Windows Linux ASO, firewalls and funds. information security

As part of the project, the SIEM system was integrated with the security control system and compliance with MaxPatrol 8 standards, network traffic monitoring was configured, and the built-in correlation rules were adapted to the plant infrastructure. In addition to the basic package MaxPatrol SIEM - a regularly updated database on threats to information security - UCSB specialists have developed expert content that takes into account the specifics of the SinTZ business.

The transition to a different level of protection against cyber threats is especially relevant against the background of digitalization of production at TMK enterprises. The system allows you to record incidents and prevent threats to information security in a mode close to real time, which significantly increases the reliability of not only IT infrastructure, but also production equipment, "said Vyacheslav Gagarinov, managing director of SinTZ.

{{quote 'The information security event management system is usually needed by large, economically mature companies whose IT infrastructure generates millions of events every day. The introduction of the SIEM system at the Sinarsky Pipe Plant is the most important stage for the enterprise in the formation of an integrated information protection system, "said Valentin Bogdanov, Director General of the UCSB. }}

MaxPatrol SIEM includes what a company with a distributed IT infrastructure needs: the product is constantly replenished with the knowledge of Positive Technologies experts about how to detect current threats and at the same time easily adapts to the protected network. And thanks to combining the capabilities of the SIEM MaxPatrol with the ones already used at SinTZ MaxPatrol 8, the enterprise has further strengthened its protection, can comprehensively assess its level of security and respond to threats in time, "said Dmitry Sivokon, director of the regional sales department of Positive Technologies.