Developers: | IT |
Last Release Date: | November, 2013 |
Technology: | Firewall, cybersecurity - Information loss preventions, cybersecurity - Information management and events in a security system (SIEM), the Situational centers |
The intellectual Security Vision platform allows to manage visually and quickly security incidents. The solution is issued in three complete sets answering to different tasks of business in the field of cybersecurity. Beginning from centralization of collecting and information storage about events of information security and finishing with automation of cybersecurity of medium-sized and large enterprises. On the basis of this solution the most advanced situational centers of the country are constructed.
Security Vision allows to receive operational data on a cybersecurity status for acceptance of management decisions, to reduce a response time by incidents and also costs for the analysis of events and investigation due to training of a system and use of the knowledge base.
The platform is intended for process automation of information security, monitoring and response to cyber security incidents. Allows to automate key processes of information security support in the organization and also it is capable to perform monitoring and robotic response to cyber security incidents in real time.
The first version of a safety management system of the organization carried the name Security Monitoring and Management Center (IT SMMC) and was developed by specialists of IT company in 2007 on the Cisco platform. IT SMMC allowed to perform collecting and correlation of events of security of the enterprise from any separate subsystems of Information security.
"Creating our solution we proceeded from requirements of the market. When implementing projects in the large companies it was necessary to face inefficient Organization of Information Security constantly. In the organizations several separate information security systems, as a rule, were unrolled, each of which solved a narrow circle of problems of cybersecurity. Each of subsystems was under construction on products of different producers and for the coordinated work of all modules deep integration and centralization of the systems of protection was required. Project experience also pushed us in 2007 to creation of the solution on incident management and security" — the head of Competence Center on information security of IT company Rakhmetov Ruslan tells.
During the development a system significantly expanded the functionality. Gradually it from category of the systems of collecting and correlation of events of security passed into discharge of end-to-end systems of security management of the enterprise. Specialists of IT finished a solution architecture and approaches to its implementation. In particular, a system saved advantages of work in heterogeneous means of protecting and purchased an analytical component on work with security incidents. In a basis of development of IT the concept of the service-oriented architecture and the safe code is put. It allows a system to adapt under business processes and IT infrastructure of any enterprise in the course of integration. At the same time the business logic of the enterprise is taken out from a program code in external settings and parameters. It gives the chance to consider all features of work of the enterprise and to guarantee high-quality interaction of a system with the business structures existing in the company and the used technical solutions.
The new interface which is most considering needs of users was developed, and a system received the new name, more exact purpose reflecting it — Security Vision.
Security Vision allows to automate a safety management process practically of any enterprise, both on technology, and at the organizational level. Technology level of automation allows to see a complete picture of information security of the enterprise in real time. Such effect is reached due to centralization and deep integration with everything and the means of protecting existing and planned to implementation. The organizational level of automation, besides in real time, provides relevant organizational and administrative documents and recommendations about reduction of the enterprise in compliance with information security policy.
The solution Security Vision has the centralized updating of documentary base that allows to receive more than 70 relevant document templates on cybersecurity according to the ISO/IEC 27001 standard. The received document templates automatically, according to the service-oriented architecture and features of the enterprise, adapt and always are in current status.
"Security Vision is integrated and works with a product line for the organization of a comprehensive protection of corporate networks Kaspersky Open space Security. Such symbiosis yields very good results — integration allows to see a relevant picture of a status of antivirus protection of the enterprise in dynamics and, the main thing, to manage it" — Polyakov Alexander, the manager with system integrators of Kaspersky Lab company noted.
For security of VPN connections in Security Vision solutions of S-Terra CSP company — the Russian technology partner of Cisco are used. Advantages of solutions of this company – work on the IPSec protocol and use of the Russian cryptography. Application of CSP VPN together with command center security improves controllability and scalability of cryptochannels when preserving high performance.
The Security Vision system is used in a number of the state and commercial organizations among which - the Ministry of ecology and environmental management of the Moscow region, SUE Mossvet, etc.
2013: Connectors to products of partners
On December 5, 2013 the companies "IT" and "Code of Security" signed the agreement on technology partnership on development of special connectors for integration of an information security management system of Security Vision and products "Code of Security".
In the Security Vision system connectors for APKSh "Continent" of version 3.6 and the information security facility from NSD Secret Net of version 7 are implemented. As of the beginning of December, 2013 development of connectors for other information security tools of Code of Security company is conducted.
"At the moment support of two product lines is added to Security Vision: "Continent" and Secret Net. A number of projects where Security Vision works with these products, is already implemented in several large companies. Now we write connectors for integration of a HSS Sable and vGate. Further we are going to support all product line of Code of Security, – Fedor Gorlovsky, the manager on partnership of TsKIB of IT company noted.
"It is very important for us that our products were integrated with solutions of our technology partners because it allows to provide additional benefits to our users. Customers who use Security Vision together with our products thanks to it receive more complete picture of security status of the IT systems", – Andrey Golov, the CEO of Code of Security emphasized.