Home About Us Products Training Professional Services News/Events Contact Us

Security Technologies Firewall DLP VPN Intrusion Prevention Authentication Content Security Cryptographic Techniques Enterprise Security Management Vulnerability Management Secure Web Gateway Security Architectures Secure Internet Perimeter Secure Remote Access Identity & Access Management Internal Security ENTERPRISE SECURITY MANAGEMENT ArcSight™ Enterprise Security Management (ESM) is a comprehensive software solution that combines: Security event monitoring Network intelligence Context correlation Anomaly detection Historical analysis tools Automated remediation. ArcSight is a multi-level solution that provides powerful tools for business users, system administrators, and network security specialists. Some of the key features of Enterprise Security Management include: Correlation. Many interesting activities are often represented by more than one event. Correlation is a process that discovers the relationships between events, infers the significance of those relationships, prioritizes them, then provides a framework for taking actions. Monitoring. Once events have been processed and correlated to pinpoint the most critical or potentially dangerous, the solution provides a wide variety of flexible monitoring tools that enable you to investigate and remediate potential threats before they can damage your network. Workflow. The workflow framework provides a customizable structure of escalation levels to ensure that events of interest are escalated to the right people in the right timeframe. This enables members of your team to do immediate investigations, make informed decisions, and take appropriate and timely action. Analysis. When events occur that require investigation, the solution provides an array of investigative tools that enable members of your team to drill down into an event to discover its details and connections, and to perform functions, such as NSlookup, Ping, Portinfo, Traceroute, WebSearch, and Whois. Reporting. Briefing others on the status of your network security is vital to all who have a stake in the health of your network, including IT and security managers, executive management, and regulatory auditors. The reporting tools can be used to create versatile reports that can focus on narrow topics or report general system status either manually or automatically on a regular schedule. With enterprise security management (ESM), security organizations manage information risk and protect critical assets by responding to the right security issues at the right time. Copyright © Provision Software Division 2005. All rights reserved.