R-Vision SGRC CKIB Information Security Control Center

The main articles are:

• Firewall
• DLP - Data Loss/Leak Prevention
• Cryptography

SGRC is an information security control center.

2024

Compatibility with Rosa Chrome

On October 16, 2024, R-Vision and STC IT ROSA announced the completion of testing for compatibility of products - technologies for automating the process of managing information security incidents R-Vision of the Central Information Security Commission and the ROSA Chrome operating system. As a result of testing, bilateral certificates were signed confirming the successful interaction between the products.

The compatibility of R-Vision TsKIB and the ROSA Chrome operating system ensures a smooth transition to domestic solutions and reduces the risks of problems during the integration of various systems. This, in turn, increases the level of information security of organizations and reduces the cost of maintenance and support of systems.

R-Vision TsKIB and ROSA Chrome are developed taking into account the requirements of Russian legislation and the specifics of the domestic market. They correspond to the fourth level of trust in the means information protection and security information technology established. FSTEC of Russia This confirms their reliability and effectiveness in ensuring the information security of organizations. The joint application of domestic solutions will make it possible to implement the actual import substitution in the key industries economies and strengthen technological sovereignty. countries

Software developers are actively working to reduce dependence on foreign vendors. We are also actively working in this direction - we are creating an ecosystem of products for information security, "said Vladimir Oralov, Head of Technological Partnership and Customer Experience at R-Vision. - Compatibility of R-Vision CKIB products with ROSA Chrome OS is an important step in the development of complex solutions to increase the technological sovereignty of the Russian IB industries-. Partnership with STC IT ROSA opens up new opportunities for customers. It allows you to offer users of ROSA Chrome OS a modern toolkit, and also provides a high level of information security. This is especially true for industrial and, financial industries where questions are cyber security becoming increasingly important.

The transition from the use of foreign technologies to the use of Russian products requires careful planning and preparation. It is necessary to analyze the existing systems and determine which of them can be replaced by Russian analogues. This process is important both for government agencies and for companies from various sectors of the economy. The use of Russian solutions will make it possible to replace imports in accordance with information security requirements, - said Vyacheslav Kadomsky, director of strategic development at ROSA.

Alt Server Compatibility 10

BaseALT confirmed the compatibility of Alt Server 10 with R-Vision TsKIB (Information Security Control Center), a product of R-Vision. This was announced by "BASEALT" on September 5, 2024. Read more here.

Platform V SberLinux OS Server Compatibility

and Russian developers Sber Tech R-Vision on August 12, 2024, the completion of compatibility tests of the platform for providing safety information systems R-Vision CKIB and. operating system Platform V SberLinux OS Server More. here

Integration with Softline Universe

Softline Group of Companies (PJSC Softline) on April 4, 2024 announced the introduction of R-Vision SGRC technology in the Softline Universe ecosystem. As part of the partnership, Softline customers will be able to access R-Vision}} SGRC. The solution will help to systematize information security processes and ensure compliance with regulatory requirements. Read more here.

2023: SGRC 5.2 R-Vision with expansion of pre-installed methodology set

R-Vision on June 5, 2023 announced the update of the R-Vision SGRC information security management automation platform. In version 5.2, the developer revised the procedure for categorizing CII objects and took into account the updated rules for working with personal data in accordance with the changes made to the current regulations.

In accordance with the procedure approved by the Decree of the Government of the Russian Federation of 20.12.2022 No. 2360 "On Amendments to the Decree of the Government of the Russian Federation of February 8, 2018 No. 127" in R-Vison SGRC 5.2, the list of criteria and values ​ ​ for assessing the category of CII objects was updated. This, in turn, makes it possible for users to more accurately determine the significance of the CII object and notify the regulatory authorities of the categorization in a timely manner.

In the updated version of R-Vision SGRC, the developer also took into account the requirements of orders Roskomnadzor No. 178 and No. 179 of 01.03.2023, which change the order (processing of personal data PD). The platform functionality allows you to form and maintain lists of information systems and, business processes lists of persons responsible, as well as take into account other assets involved in the processing of personal ones. data Users can automate such routine operations as notifications of those responsible for changing the composition of the PD, reassessment of damage in cases of violation of the law and changes in the composition of technical means in the infrastructure of the organization.

Another important platform change is due to the expansion of the set of pre-installed techniques supplied with R-Vision SGRC. Thus, in version 5.2, R-Vision has added an updated methodological document FSTEC from 2021 "Methodology for assessing security threats." information This allows you to enter current data tactics and techniques, as well as define scenarios for implementing security threats to form a threat model according to the requirements of FSTEC.

In the "Audits" section, users have the opportunity to conduct additional control over the process and the audit result by fixing the hash amount of the attached evidence. Thus, they can verify that there are no re-attached files and their falsification, which increases confidence in the results of the audit.

A number of functional improvements implemented in the new version of R-Vision SGRC allow organizations to even more effectively solve information security and compliance problems. Continuing to improve the product, we pay special attention to the needs of our Customers, as well as compliance with regulatory initiatives adopted at the legislative level. Therefore, in the new version 5.2, we added additional control functions during Audits, and also expanded the platform's capabilities within the framework of categorizing CII facilities and Asset Management, "commented Ksenia Kolyada, R-Vision SGRC product manager.

2022

Jatoba DBMS Compatibility

A series of tests for the correctness of the joint functioning of Jatoba DBMS and R-Vision SOAR and R-Vision SGRC products, which are functional blocks of the R-Vision Information Security Control Center software platform, has been completed. Gazinformservice announced this on August 9, 2022. Read more here.

Certification for compliance with information security standards of Belarus

Products, R-Vision SOAR R-Vision SGRC and R-Vision ACP have been certified (Operational and Analytical Center under the President of the Republic of Belarus OAC) as part of the R-Vision Information Security Control Center (CKIB) software platform. The availability of the OAC certificate confirms the compliance of the products with R-Vision standards information security Belarus and is an important condition for use in the territory. This was states reported on July 27, 2022 by R-Vision.

In the process of certification, the R-Vision TsKIB platform and products that are its functional blocks have successfully passed all relevant checks and are recognized as suitable for information systems that process personal data, service and commercial secrets, banking information and other confidential information. Thus, the issued certificate No. BY/112.02.02 TP 027 036.01 00477 certifies that R-Vision products meet all the necessary security requirements for information systems in accordance with the state standards of Belarus.

The R-Vision CKIB functional units include:

• System of orchestration, automation of information security and incident response - R-Vision SOAR;
• Information security, risk management and compliance assessment system - R-Vision SGRC;
• The system for automating the asset management process is R-Vision Asset Control Platform (ACP).

Thus, any private Belarusian companies, as well as state organizations, can use R-Vision products that are part of the R-Vision TsKIB platform, since they comply with STB 34.101.1-2014, STB 34.101.2-2014 STB 34.101.3-2014 standards.

Product certification was carried out within the framework of the necessary procedures in accordance with the technical regulations of TR 2013/027/BY, with the participation of MultiTech Engineering, R-Vision's strategic partner in Belarus.

"The successful passage of the certification process of the R-Vision Information Security Control Center confirms the proper level of quality and security of our products. We are glad that the technologies and results of our many years of experience have become available to all customers in Belarus. Now we can fully satisfy the requests for information security of both commercial and state structures in Belarus, "said Alexander Bondarenko, General Director of R-Vision.

R-Vision SGRC 5.0 with the function of export-import of audit procedures

On July 20, 2022, R-Vision announced the release of an updated version of the R-Vision SGRC 5.0 information security management automation platform. In version 5.0. the developer has improved the functionality of the product in terms of audits, asset accounting and vulnerability management.

The requirements and regulatory documents adopted at the legislative level have a great influence on the development of the system. Thus, in accordance with paragraph 4 of Decree No. 250 "On Additional Measures to Ensure Information Security of the Russian Federation," the vendor supplemented the "Audits" section with audit forms and report templates that will help users prepare all the necessary documents in just a few clicks. Earlier, by analogy, the system implemented the ability to conduct qualitative and quantitative risk assessments, take into account risk indicators and operational risk management procedures in accordance with the requirements of Bank of Russia Regulation No. 716-P "On Requirements for the Operational Risk Management System in a Credit Institution and a Banking Group."

In version 5.0, the function of exporting-importing audit methods was also added to the "Audits" section. Thanks to this, users have a flexible tool for quickly transferring the settings specified in the test environment to the main servers during the full implementation of R-Vision SGRC 5.0. This innovation reduces time during the transition to industrial operation of the system.

A number of improvements are included in the Assets section. The developer has improved the mechanisms for loading asset data. Users can now automatically upload data to the system from Excel, CSV, JSON, and XML files. Advanced file format support simplifies the process of transferring asset data, which in turn speeds up the inventory process. In addition, this version has functionality that simplifies the accounting of assets of large geographically distributed companies: the system can synchronize the settings of the "Assets" section between the R-Vision installations of the company's head office and subsidiaries.

R-Vision also implemented important changes in the Vulnerabilities section, supplementing the product with tools for creating and adding vulnerabilities manually. Users can also independently set vulnerability parameters and, thus, consolidate information on all vulnerabilities in the company's infrastructure in the system. Another update to the "Vulnerabilities" section is the ability to assign the "Risk Accepted" status to vulnerabilities that cannot be eliminated, but the fact of their existence has been taken into account by the user.

R-Vison SGRC 5.0 has improved data visualization on dashboards: system users can track the excess of permissible metrics, form and display samples according to the principle of "top objects," for example, the top of the most frequent comments detected during audits. At the same time, the developer improved the option of quickly moving from the dashboard to all sections of interest reflected in a separate sector of the graph.

Over the entire existence of the R-Vision SGRC product, we have been continuously working on the development of its functionality: we are improving the system algorithms, creating additional tools for more flexible and effective control of information security processes. The Company responds in a timely manner to changes in the regulatory framework, supplementing the product with the relevant requirements, methods and reporting forms. Therefore, the transition to the fifth version was only a logical continuation of the work we have done over the past few months, - commented Ksenia Kolyada, product manager of R-Vision SGRC.

Availability on Jet CyberCamp platform as part of cyber training

On June 7, 2022, the company ITJet Infosystems"" announced that, together with the system developer cyber security R-Vision , they had prepared a joint cyber training program. As part of this program, INFORMATION SECURITY specialists will be able to gain practical experience with, R-Vision SOAR R-Vision SGRC and during R-Vision TIP training on the Jet Infosystems platform. Jet CyberCamp More. here

2021: R-Vision SGRC 4.7

On November 9, 2021, R-Vision announced that it had updated the R-Vision SGRC information security management platform. One of the key changes in version 4.7 is the improvement of the logic for working with consolidated audits, as a result of which the process of conducting comprehensive inspections has been simplified. Other changes include expanding the list of integrations for importing asset data, additional vulnerability management capabilities, and additional options for creating reports and graphs.

The R-Vision SGRC platform version 4.7 implements the process of working with consolidated audits in a different way. The term "consolidated audit" in the system refers to a separate type of audit that is used to conduct a comprehensive audit of one or more assets against the same or different standards. It is a tool that saves effort when you want to aggregate information from multiple audits. In version 4.7, the consolidated audit interface became the center from which the expert can manage all the inspections included in it: editing the workgroup, changing status, evaluating requirements, managing comments and creating a processing plan. The option to quickly view the asset cards included in the valuation area appears, which displays general information about the category, responsible persons, related assets, and others. The Summary Check interface is complemented by the Total tab. It is a customizable mini-board that collects information on the results of calculations of totals, the course of verification and created reports, statistics on open and processed comments.

The integration capabilities of the platform have been sufficiently expanded. R-Vision SGRC has integration with the Skybox system and the Tenable Security Center vulnerability scanner. Also added universal integration using Python to import asset and vulnerability data from any information source using a script. Obtaining asset data is also possible through integration with files in Excel/CSV, JSON and XML formats.

To the available methods of inventory of systems under management OS Windows , the ability to inventory through WinRM (Windows Remote Management) has been added. This is safe a method that does not require local administrator rights on the remote host and uses encrypted the connection by default.

Most of the changes affected the Vulnerability section. Information about vulnerable software and related vulnerabilities, i.e. similar vulnerabilities from other sources, has been added to the vulnerability card. This data is useful for information security analysis and can be used in the settings of vulnerability management policies. There was also an option to display the presence of exploits for the vulnerability - this information is formed on the basis of the vulnerability vector and data received from an external source. Another useful function is the ability to calculate the vulnerability rating based on the CVSS score and the values ​ ​ of the asset and vulnerability fields, the user sets the logic for calculating the rating. In addition, it became possible to view statistics on vulnerabilities, filter data by various parameters and import user reports on vulnerabilities using a special template.

In Report Designer, you can generate report templates as tagged text files that are replaced by query results. Such reports can be created in DOCX, PPTX, XLSX, ODT, PDF formats - thus, the list of supported formats has expanded. The system also retains the ability to use a template in HTML format and an automatically generated report in XLS format. You can save the generated report directly to the document base or attach it to an existing document, and the system automatically links the document to the entities for which it was created, making it easier to maintain the document base.

In the graph designer, it became possible to build a top of objects - in ascending or descending order. Users can set the sample size (top-3, top-5, top-10, etc.), as well as sort not only objects, but also groups selected within them. An additional type of user graphics "World Map" has appeared, representing a more flexible version of the classic system card. On a customized map, you can display IT asset groups, equipment, incidents, and vulnerabilities. It is customizable, supports data filtering and allows you to display data by location level - country, territorial division, city, address, as well as aggregate data at a given level to facilitate the perception of information. Additionally, a flexible role model has been added to the graph designer, allowing you to limit the list of objects on which the user can plot and provide read-only access. For user graphs by objects such as user assets, vulnerabilities and incidents, a filter panel has appeared, which allows you to quickly filter the necessary data and view them in a different context, without changing the graph itself. To speed up the download of information on dashboards, the process of updating them has been revised: now simple graphs that display a small amount of data are updated automatically once a minute, and complex graphics are updated once a day. The update takes place in the background without affecting the graph displayed. Each graph marks the date of the last update and supports the manual update option, but these changes did not affect the system schedules.

{{quote 'author
= noted Ksenia Kolyada, R-Vision SGRC product manager. |«Большой объём данных, собираемый о состоянии information security, can both positively and negatively affect the decision-making process. The competent presentation of the final data is an important stage that should not be overlooked. With R-Vision SGRC 4.7, the information security monitoring process becomes easier and more convenient: we have completely redesigned the approach to working with consolidated audits, focused on the development of dashboards, and also developed the ability to prioritize vulnerabilities, "-}}

The "Audits," "Remarks," "Activities," "Tasks" and "User Assets" sections optimize the procedure for user interaction when editing system objects together. After the changes are made by another user, a notification is displayed in the current user interface with the option to continue working or update the data being viewed.

To improve security, the product interface now displays a notification when a user logs in from another device under the current user account, and you can shut down all sessions for the current user account.

R-Vision Customer Support will notify current product users that updates are available for migration.

2020

Obtaining the FSTEC certificate on the 4th level of trust

On December 25, 2020, R-Vision announced that it had received a certificate from the Federal Service for Technical and Export Control (FSTEC) of Russia. The R-Vision SGRC platform is part of the R-Vision Information Security Control Center. Read more here.

R-Vision SGRC 4.4

On July 15, 2020, R-Vision announced that it had updated the R-Vision SGRC information security management platform. Among the main updates of version 4.4: flexible categorization of assets, updated options for audits and accounting of documents, an improved scheme for assessing threats according to FSTEC and notification of users.

R-Vision SGRC 4.4

According to the company, R-Vision SGRC 4.4 has the opportunity to create its own classifier of assets and carry out their automated categorization, both in accordance with the requirements of the law and in accordance with internal methods. Based on the categorization results, you can automatically associate all the necessary regulatory documents with the asset.

The asset register now contains all the data necessary to quickly monitor the level of compliance with information security requirements in the organization: information on audits, comments and measures to eliminate them. Directly from the Assets section, the user can schedule an audit, see violations identified in relation to the asset itself and related equipment, premises or systems, as well as a plan of work to eliminate comments.

As of July 2020, our customers demonstrate maturity in information security management, risk assessment, and threat modeling. By solving these problems, they are building increasingly complex schemes for the interaction of the platform with other systems as part of their business processes. told Valery Bogdashov, Executive Director of R-Vision

A significant part of the changes affected the Audits section. In R-Vision SGRC 4.4, the composition of attributes for simple and summary audits is flexible: now you can recreate an exact copy of the audit plan installed in the organization on the system and track the progress of its implementation dynamically. To prevent the user from skipping important changes, an automatic notification setting has been added.

When conducting a comprehensive audit consisting of several audits, it became possible to aggregate the results of incoming inspections to calculate the final compliance assessment. When you change the procedure, the aggregated key figures are recalculated automatically.

It has become more convenient to work with audit comments: now you can hide the types of comments that do not apply to the assessment method, excluding the auditor's choice of an erroneous wording. This is extremely important when the organization uses several independent assessment methods. When creating a remark action, the task can be automatically sent to external Service Desk systems with the ability to monitor execution.

The set of pre-configured verification methods was replenished with the method of GOST R 57580.2-2018, and GOST R 57580.1-2017 itself is included in the base of R-Vision SGRC regulations. Based on the results of the check, a complete set of necessary reporting documents is generated.

The FSTEC threat assessment scheme has been improved: now the platform not only detects threats, but also automatically assesses their relevance, based on the assessment criteria specified for the "degree of damage" parameter.

In R-Vision 4.4, the organization's document accounting section was developed: for document types, an individual composition of fields is configured taking into account the peculiarities of the document flow associated with them, and work on revising, updating or approving documents can be planned without leaving their card.

An improved report designer is provided for generating reports with a user-defined data set and structure. Templates created in it can be exported and imported. All reporting is now divided into two tabs: system templates and report designer.

Improved notification of users about tasks: now R-Vision SGRC notifies the user not only about the assignment to the task, but also about the need to refine it or change the performer, and a link is displayed in the notification text to quickly navigate to the task description.

SGRC systems help CISO in information security management, allowing you to automate processes such as asset management, compliance control, information security risk management, threat modeling, regulatory documentation, accounting and categorization of CII objects, planning and monitoring of information security division in the organization.

2019: Compatibility with Alt 8 SP

On September 30, 2019, it became known that IVK is expanding the ecosystem of Russian and foreign application software compatible with the Alt 8 SP operating system (joint development with BASEALT). Read more here.

2015: Bringing SGRC to Market

On November 9, 2015, R-Vision announced the launch of SGRC information security management technologies.

The product consists of integrated and integrated modules of the R-Vision system. His task is to consolidate information from various information security processes to support the manager in making decisions on the strategy and tactics of information security management in the company.

Visual representation of the system functionality (2014)

Functionality

R-Vision SGRC helps solve the tasks of controlling physical and information assets, managing risk, monitoring compliance with the requirements of legislation and standards, managing information security incidents.

SGRC R-Vision Presentation (2015)

As part of the R-Vision SGRC:

• additional functionality of information security unit tasks management,
• extended panels for visual perception of information,
• integration with other security features and systems.

R-Vision SGRC for Information Security Manager:

• Center for Analysis of Current Information Security Activities
• center for predicting the possible consequences of information security risks
• center of tactical and strategic security planning in the company
• the main tool of the head of the information security division, information security manager (CISO).