High profile breaches are on the rise. Online communities are becoming more aware and additional compliance requirements make IT security everyone’s top priority. CITIC Telecom CPC TrustCSI™ Managed Security Services, which complement multiple Security Operations Centres (SOCs) with high availability and disaster recovery functionality, are designed to help you handle these increasing IT security demands effectively. Based on ISO27001-certified processes, we provide robust 24/7 monitoring and help businesses identify and analyse vulnerabilities, prioritize threats as well as refine security policies and processes.
1a. Raw event logs will be sent to CITIC Telecom CPC LEC for Filtering and Aggregation. They will then be passed to CITIC Telecom CPC SOCs.
1b. The Vulnerability Scanner will scan the selected assets periodically and deliver the scan results, which will be stored in the knowledgebase.
2. CITIC Telecom CPC SOCs will then make use of the SIEM (Security Information and Event Management) engine for the correlation and analysis of the meta-log and the knowledgebase. The correlated results will be classified in the appropriate category and assigned a risk level.
3. If CITIC Telecom CPC’s security specialists in the SOCs find out that the severity of the correlated event is higher than the level agreed with customers, they will activate the incident response mechanism. Customers can get a full overview of their security status via the dashboard.
4. Through the online TrustCSI™ MSS portal, customers not only obtain the latest RSS news feeds from all over the world, but also get a full overview of their security status in real time, including detailed security event handling information.
You are about to visit our website