| “From a technical standpoint, Vigilant is first rate, and the services and content it offers are highly useful to large-scale enterprise | ||
|
Fulcrum Framework™: Achieving Best-in-Class Security Monitoring - smarter, faster, cheaper
Security information and event management (SIEM) and log management (SLM) products are designed to make the detection, analysis and response to security threats more effective and efficient. But getting there is easier said than done. Today's SIEM products provide better out-of-the-box value than ever before, but deploying SIEM is still a significant undertaking, requiring customization to each unique environment. And like any other enterprise IT project, a successful SIEM effort must be guided by a well-planned program that prioritizes both long- and short-term objectives, aligned with business objectives.With staff resources stretched thin, few companies have the people and skills to develop the SIEM to the point of measurably improving the security team efficiency and effectiveness. Vigilant's Fulcrum Framework™ solves that problem. It is a library of SIEM ready-to-deploy “use cases” — sets of associated data source requirements, rules, filters, reports, dashboards, and workflows — that are used to accelerate the implementation of SIEM and SLM products to effectively address a wide range of business and security operations problems. It utilizes both the ISO 27002 standard and best practice standards developed by Vigilant through more than six years of complex SIEM deployments.
Fulcrum Framework enables the Vigilant project team to…
Rapidly Define the SIEM Program. Every customer’s program is driven by a unique combination of standards, regulations, and internally-defined policies. Knowing where to start and how to phase the effort can be challenging. Fulcrum Framework contains a searchable database that enables Vigilant consultants to rapidly identify the various use cases needed to implement the security controls associated with any combination of special internal requirements, industry standards, and regulatory requirements, including ISO 27002, Sarbanes-Oxley, HIPAA, PCI, NERC/FERC, and others.Accelerate SIEM Implementation. Besides yielding a list of the SIEM program requirements, Fulcrum Framework contains the necessary structure of each SIEM use case so it can be rapidly and accurately implemented, regardless of the specific brand of SIEM or SLM product being used.
Report on Security Progress and Effectiveness. For each use case, Fulcrum Framework embeds formulas and metrics that enable role-based reporting – for operations, engineering and management – so progress and effectiveness of the security program can be measured and communicated over time.
Your Choice – On-site Deployment or Managed Services. Fulcrum Framework speeds ROI from SIEM, whether you choose to engage us for on-site project services or use our Fusion for SIEM managed service. For managed service customers, Fulcrum Framework enables the delivery of SIEM configuration updates, guides ongoing refinement of the SIEM deployment, and supports advanced reporting solutions that measure and score overall risk and security posture.