SOC Prime Platform Setup & Fine-Tuning
Our experts analyze your organization's threat profile
and current cybersecurity environment to ensure a seamless
SOC Prime Platform configuration tailored to your business
needs and our best practices.
What’s Included
MITRE ATT&CK® Audit
SOC Prime Team of experts takes a data source-centric approach
to delivering the MITRE ATT&CK visibility audit. This service
provides a thorough review of the availability and usability of
your data sources, including Firewall, operating system, and
anti-virus logs. This audit is offered as a one-time service or
quarterly for a year.
What’s Included
Platform Support
Log Source Audit
The Log Source Audit provides an overview of SIEM,
EDR & XDR visibility as it aligns with the MITRE ATT&CK
tactics and techniques along with recommendations and
insights for improving your organization’s cybersecurity
posture. This audit is offered as a one-time service or
quarterly for a year.
What’s Included
Platform Support
SIEM Health Check Audit
Our experts examine your SIEM for performance and
reliability issues, assessing the architecture, services,
hardware, and detection content together with log sources and
their parsing. The SIEM Health Check Audit includes two phases:
-
Pre-assessment and info collection. During this phase,
SOC Prime collects information about SIEM installation,
including the data related to the following assets:
- Performance issues description
- SIEM architecture
- Hardware
- SIEM Components
- Data Flows
-
Audit phase. During this phase, SOC Prime analyzes all collected
information to identify possible causes of performance issues and
assesses the following assets:
- General SIEM architecture. Identifying possible bottlenecks related to architecture.
- Hardware. Analysis of the hardware setup and utilization.
- SIEM services. Analysis of SIEM services and identifying possible issues.
- SIEM-native content. Analyzing the SIEM-native content (e.g., log sources, collection layer, configurations, custom parsers, rules, etc.) and identifying issues that may affect performance.
What’s Included
Platform Support
Threat Hunting Training
Train your security team to effectively protect and defend
your enterprise against targeted cyber attacks with this hands-on,
real-world course from SOC Prime. The Threat Hunting training will
help your SOC members and Blue Teamers gain insights into how
cyberattacks work and enrich their knowledge about TTPs while
helping your team stay one step ahead of threat actors and saving
time on detection activities.
What’s Included
Platform Support
Threat Hunting Labs are also included in a service package covering the following:
- Creating a robust detection
- Creating and executing a hypothesis
- Identifying critical gaps in data
Duration
3-day workshop
Number of Participants
For up to 5 attendees
Who Can Participate
Junior Security Analysts and Threat Hunters
focused on finding malicious events/actors,
network security professionals and incident
responders
Log Source Integration
Our seasoned engineers integrate new log sources in your SIEM.
We develop integration scripts and tools together with parsers
to process the data and align it with your SIEM data schema.
What’s Included
The Log Source Integration service offers a number of solutions
for both individual organizations and MSSPs & MDRs.
Individual Organizations
MSSPs & MDRs
Platform Support
Hyperdrive: Custom Content Development
SOC Prime Team of experts will help your organization rapidly
build up cyber defense capabilities in the specific threat area
relevant to your business. With Hyperdrive, organizations enable
security use cases end to end across people, processes and technology,
at hyperspeed and with no extra costs for managed services.
What’s Included
Platform Support
You are in good company
