SPP Pulsar has implemented SearchInform SIEM to monitor safety events

2024: Implementation of SearchInform SIEM

The Pulsar Research and Production Enterprise has implemented SearchInform SIEM to identify incidents and manage information security events. This was announced by SearchInform on May 20, 2024. The customer deployed the SIEM system throughout the enterprise IT infrastructure at the end of 2023 after piloting. The solution is designed to detect hardware and software failures, targeted attacks and potentially dangerous user actions on the corporate network in real time.

The customer tested the solutions of several vendors. The key criteria for choosing SearchInform SIEM were: the availability of all the necessary functions out of the box, support for non-standard connectors, the ability to quickly respond to information security incidents and the validity of the price.

Prior to the implementation of SIEM from SearchInform, our company did not install systems of this class. But since we are engaged in the development and production of microelectronics, it is critical for us that the entire infrastructure of the organization is under reliable protection. Therefore, it was decided to implement, - said Dmitry Shishkin, deputy head of UITI JSC NPP Pulsar. - SearchInform SIEM made it possible to collect data from various sources, centrally analyze them in automatic mode and respond to information security incidents in time. In addition, we were pleased with the approach to the implementation and technical support department of SearchInform. Specialists in a relaxed form and at a high level conducted training of the pilot group, and continue to promptly support and support the system during operation.

So, already in the first days of operation of SearchInform SIEM, a number of potential vulnerabilities were identified in the infrastructure of NPP Pulsar, which were promptly eliminated.

Our SIEM system works with more than 30 connectors, for which almost 400 pre-configured correlation rules are available. They help the SIEM administrator identify where events occur in the IT infrastructure at the implementation stage. The rules tab allows you to identify incidents that require additional investigation and determine if the event is an incident. Also, "SearchInform SIEM" collects general statistics on incidents, which allows the SIEM administrator not to miss a sharp jump in the number of workings, - said Alexey Parfentiev, head of the analytics department of "SearchInform."