Overview
Service Overview
This is a managed service offering where experienced AHEAD personnel support Customers, including:
- 24x7x365 threat monitoring and analysis of in-scope log data from applications, databases, operating systems, network technologies, and security appliances.
- 24x7x365 priority review of system generated offenses.
- Review and respond to Customer inquiries is a timely manner
- Provide initial analysis of a potential security incident identified and escalated by Customer
- Provide remediation/countermeasure recommendation, if applicable
- Document details of analysis and recommendation in ticketing system
- Escalate and notify of security incidents and other issues to appropriate Customer personnel and appropriate third parties.
- Perform operational change related activities to SIEM platform
- Manage Capacity and Performance of security monitoring platform
- Tune and optimize SIEM alerts
- Work cases with the appropriate vendor to completion, and interface with the assigned Customer personnel during incident events
Highlights
- Provide 24x7x365 threat monitoring and analysis of in-scope log data and remediation/countermeasure recommendation, if applicable
- Escalation and notification of security incidents and other issues to appropriate Customer personnel
- Capacity and Performance Management of security monitoring platform and Tuning and Optimization of SIEM alerts
Details
Pricing
Custom pricing options
Pricing is based on your specific requirements and eligibility. To get a custom quote for your needs, request a private offer.
Legal
Content disclaimer
Vendors are responsible for their product descriptions and other product content. AWS does not warrant that vendors' product descriptions or other product content are accurate, complete, reliable, current, or error-free.
Support
Vendor support
Please contact AHEAD for additional details on our approach to enabling your enterprise cloud.
Phone: +1-312-924-4492 Email: awsapn@ahead.com Contact Us URL: