RSA enVision Security Information and Event Management (SIEM)

Improvements of the RSA enVision SIEM platform are developed for fall forward and simplicity of processing of special requests to data of magazines and also for expansion of abilities to manage by reports. Now for the purpose of investigation of incidents and response to them clients can submit inquiries to large volumes of these magazines, and processing of these requests happens up to 10 krat quicker, than when using the previous version of the platform. The RSA enVision 4.1 platform is developed in such a way that at the centralized deployment of RSA enVision ES it is capable to work as completely virtual machine, and at the distributed implementation of RSA enVision LS it is possible to use virtual collectors of data. These improvements allow customers to implement the coordinated security system and observance of standards in virtual and physical infrastructure. Thanks to performance improvement of special requests in the RSA enVision 4.1 platform the speed and flexibility which are extremely important for investigations and examination on the basis of event logs increase.

The RSA enVision platform is the product "rub in one" which is carrying out 3 main objectives:

• management of security of network and security incidents for ensuring compliance to regulators;
• gain of security and warning of risks;
• optimization of work of IT structure and use of network resources.

RSA enVision performs automatic collecting, the analysis, the notification, audit, the reporting and information storage about work of all IT structure.