Event Management and Data Security System

At Security Operations Center (SOC), in order to take advantage of the process-oriented and intelligent mechanism for monitoring events, incidents and security incidents, applying corrective and preventive measures against possible security attacks from advanced and up-to-date software under the name of the system Event management and information security (SIEM) is used. In other words, SIEM is the brainchild of the security operations center. Therefore, choosing the right product for the employer's conditions is very influential in the success and efficiency of the security operation center.
Considering the sensitive and key position of the Islamic Republic of Iran in the region and the world and the need to pay attention to security in the field of cyberspace, especially in sensitive and vital centers, in this regard, Aran, by obtaining representation from Amon Pardazan Kavir company, security products in the field of information technology with Taking advantage of our experiences in the country's big security projects, compared to the supply of the system Incident management and native information security Under the title APKSIEM in the form of four modules:

SA (Smart Agent)
NBA (Network Behavior Analysis)
LCE (Log Correlation Engine)
LM (Log Manager)

has taken action 

Benefits of using SIEM
Providing an overview of the organization's information and network security status
Collect events from users and various network equipment and network security
Storage of all events
Identifying and prioritizing incidents and events from cyber attacks and network events
Analysis of network behavior and rapid detection of incidents
Applying organizational policies in the implemented structure
Matching events with organizational policies
365x24x7 monitoring of all events in real time
Providing statistical and graphical reports