Automated Platform
for Information Security

“Security Vision SOAR is the very heart of rapid response.”

“The Security Vision solution, in terms of price-quality ratio, satisfied our needs to the maximum. We implemented it and are actively using it and we plan to develop it further.”

“After looking at the market, we realized that the best solution for us is Security Vision. We were able to master the product fairly quickly out of the box by building all the necessary integrations with our contractors. Time to market was measured in a couple of months. For a large company with a lot of resources, this is a pretty good result.”

“We have restarted our Security Vision-based IRP platform, which allows us to expedite incident response times.”

“By and large, any scenario can be implemented on the basis of Security Vision.”

“We chose the Security Vision software product basing on the results of a long comparison of various solutions presented on the domestic market. Colleagues won in a fair competition. We use it successfully and do not regret about our choice”.

“The SOAR solution from Security Vision meets all our requirements. It cost significantly cheaper than competitors. At the same time, we like the way the Security Vision team works out feedback on the product and the implementation process, we like the quality of the support provided on the project.”

“Today there is a high demand on the Russian market for the protection of corporate information systems. The integration of BI.ZONE and Security Vision products brings together two perspectives on cybersecurity. Our collaboration will help businesses respond faster to cyberattacks and minimize damage from them.”

“For our SOC-center, the Security Vision SOAR system is a universal “data bus” in terms of processing information security incidents. Through it, you can carry out complex integrations with IT and information security systems of customers. Security Vision SOAR allows you to automate most of the time-consuming manual work of SOC operators and use the flexible logic of tools when developing response playbooks, as well as interact with a large set of software products.”

“The integration of Smart Monitor and Security Vision makes it possible to implement wide functionality for orchestrating information security incidents. The combined use of these products allows us to bring SOC platforms to a new technological level.”

“According to Kaspersky Lab, in the first five months of 2022, the number of cyber incidents in Russian companies increased by almost 40%. Among the most frequently attacked were the financial and transport industries, IT and government agencies. In this regard, we note the increased interest in SOC and are ready to offer an updated service based on the Security Vision IRP. Our service will allow not only relatively quickly building the processes of monitoring and responding to incidents, but also automating the processing of information security events and responding to them, which means minimizing the risks of penetration into the infrastructure.”

“In order to build a comprehensive protection of the company's IT infrastructure, the integration of RedCheck and Security Vision provides users with a new quality of the vulnerability management process. The software product based on the Security Vision platform is adapted to any configuration of the monitored system. Based on the information received, expert processing of the scan results is carried out. A plan and specific recommendations are formed to describe potential risks and eliminate vulnerabilities.”

“The integration of SAKURA and Security Vision products certainly gives our customers more opportunities. These solutions perfectly complement each other, providing the widest opportunities for collecting, aggregating and visualizing information security data, providing security officers and managers with ample opportunities for managing information security incidents. In addition, the SAKURA complex in the future will complement the Security Vision's ability to automatically respond to violations.”

“Interaction with Security Vision IRP will complement the boxed integrations available in KUMA and significantly expand our customers’ ability to automate even the most complex and resource-intensive information security processes, allowing, for example, to build multi-stage incident response chains.”

“Our company gives high priority to the protection of IT infrastructures built on the basis of Alt operating systems. Together with colleagues from Intellectual Security, we have created and will continue to develop a software stack for building such a digital environment for which security is a natural and inalienable property. Organizations and enterprises will be able to transfer their IT infrastructures to Russian software, reliably protecting them from external intrusions.”

“Security Vision platform allows you to robotize the work of an information security operator. This is extremely important for companies that need to track and analyze a large number of information security events from a large number of sources. Integration with RuSIEM monitoring and event management system will allow such customers to more effectively detect attacks and incidents, quickly investigate them and make management decisions.”

“We considered the products of Russian vendors, because these systems were deliberately created as SGRC, and taking into account the development plans, this was the most interesting for us. Therefore, and also because Security Vision IRP / SOAR is very productive and efficient, we chose this particular system.”

“Since February, the demand for IRP-type systems has increased significantly as companies have faced an increase in cyber incidents, a lack of information security specialists and new sophisticated computer attacks. In such conditions, the speed of response to each incident is of key importance and can significantly reduce the negative consequences of the actions of hackers. It is also important that the playbooks included in the IRP correspond to the technological and structural features of the customer, and the workspace is comfortable for its specialists. The adaptive interface of Security Vision IRP has allowed us to create a service that will be convenient and useful for each of our clients, said.”

“The project to automate cyber risk management on Security Vision SGRC platform made it possible to provide our risk managers with modern tools for formalizing and automating risk management processes, for continuously monitoring the level of cyber risks, setting tasks and monitoring their implementation in order to reduce information security risks to an acceptable level, as well as to provide reporting and visualization of the results achieved.”

“We plan to use Security Vision platform to a greater extent for analytics and data aggregation from security systems.”

“With the help of Security Vision customers close questions about automation and building the right, competent approach to incident response.”

“To increase the speed and the return on information security incident response, we decided to implement the IRP/SOAR platform based on Security Vision.”

“Security Vision IRP platform allows you to build flexible incident management processes both within the company and with external customers.”

“Automation with Security Vision SOAR can significantly reduce labor costs for preparing and sending a notification to the National Computer Incident Coordination Center, which facilitates the work of specialists.”

“Security Vision is one of the central points in our SOC infrastructure.”

“The choice was due to the advanced functionality of this platform, an extensive list of projects already successfully implemented by Security Vision team (including in the industry and the retail segment), platform flexibility and wide integration capabilities with the security tools we use, as well as a unique combination of technologies to speed up response, anomaly detection and assistance to members of the information security incident response team by reducing the routine workload.”

“Security Vision products have proved their high efficiency in practice, so for us the choice of a system from this vendor was quite obvious.”

“Effective use of information resources is possible only with high-quality provision of their interaction. This issue is particularly relevant when it comes to a large financial organization with a developed information structure, which unites many interconnected complexly organized systems and processes. Security Vision products are highly flexible and adaptable. It greatly simplified their integration with the bank's information security systems and tools.”

“As a result of the implementation of Security Vision SGRC, we now have an effective tool for monitoring and implementing compliance with standards and regulatory requirements. Now, at any time, department employees have complete information about which standards must be met, what the current status of compliance is, what comments there are and who is responsible for their elimination, when the last time an audit was carried out and when it is planned to hold a particular event. The work of the department employees was optimized - the total number of controlled requirements was reduced by 30% due to the identification of requirements that are duplicated in different standards. The next step will be the replication of Security Vision SGRC to other cybersecurity standards.”

“The implementation of Security Operation Center systems allows us to review almost all approaches to the processes of ensuring information security in the company in order to restructure and optimize them. Important factors in the implementation of such systems are the requirement to maximize the use of previous developments without significant additional costs for the purchase of new software products and the ability to embed a new system in the existing IT infrastructure without making significant changes. The most acceptable solution for implementing such tasks is Security Vision system, which helps fully and in the shortest possible time to meet the practical need of information security departments to automate their activities and improve their performance.”

“The implementation of the bank's operational risk management system based on Security Vision CRS has already led to noticeable improvements - shorter processing time of operational risk events, role-based access of employees to events, and the formation of a more flexible reporting system”

“The Corporation operates as a development institution in the field of small and medium-sized businesses, so the protection of information resources plays an important role not only for the Corporation itself, but also for many small and medium-sized businesses that use the resources of the Corporation. We are grateful to our colleagues from Security Vision for their high professionalism and assistance in solving such an important and urgent task.”

“In my opinion, Security Vision software products are quite naturally in demand by many state and commercial structures, including the largest financial institutions of the Russian Federation. They are really effective in terms of automation of cybersecurity processes, have high potential for flexibility, adaptability and scalability.”

“Now there are two obvious trends in the development of information security systems for enterprises. On the one hand, security systems are becoming more complex and diverse, which means that they require separate centralized management and monitoring tools. On the other hand, there is a shift in focus from preventive IS controls to operational detection and response. Colleagues from Security Vision anticipated these changes and for more than 10 years they have been creating and developing a product that allows companies to create an effective information management center. I believe it is more relevant now than ever.”

“Every day we have 1-2 million events that, to one degree or another, may be related to disruptions in the operation of technological systems. This kind of information needs to be analyzed, critical events need to be identified in order to manage them. To deconstruct these risks, critical events, and to neutralize them so that all systems work reliably.”*
* From an interview to RBC TV https://tv.rbc.ru/archive/main_news/575afd2e9a79473aca9dddfa

“SDM-Bank is in the TOP-100 of the largest Russian banks and continues to develop steadily. The issues of ensuring the Bank’s information security, reliable protection of its information assets from all types of external and internal threats are among our priority tasks, the high-quality and timely resolution of which is the key to the Bank’s stable functioning. SDM Bank strictly complies with the requirements and recommendations of the Bank of Russia, MIR, Visa and MasterCard payment systems, and is a member of the information interaction with the FinCert of the Bank of Russia. A well-organized monitoring is one of the pillars of the proper operation of the entire information security management system. And in order to provide a quick response to cybersecurity incidents, we have built the asset management process as a starting point in the protection of information.”

“Automation in matters of cybersecurity comes to the fore, because robotic response tools allow you to provide the proper level of information security in 24x7 mode. One of the important steps in the direction of automation was to build a process that covers the basic principles of cybersecurity incident management in order to further reduce the risk of human factors and the mistakes of employees involved in responding to cybersecurity incidents, as well as to free up the time of qualified personnel from routine operations to perform more expert tasks.”

“The vast majority of cyber attacks in the world and in Russia are directed at financial organizations, in particular, banks. This makes it necessary to use flexible and reliable information security tools that provide optimal opportunities in the field of countering cyber threats. Security Vision IRP allowed robotic execution of software and technical functions of a security operator with an automation share of up to 90%. The system provides automatic execution of the full range of routine procedures, which allows us not only to respond to cyber threats 24/7, but also to avoid the influence of the human factor.”

“The speed of response to cyber attacks is a critical factor. With the help of Security Vision IRP, the processing of the entire incident life cycle is automated - the response speed to threats is increased and the influence of the human factor is eliminated. The use of new methods of Big Data analysis in issues of protection against cyber threats by Intellectual Security allows Security Vision IRP to successfully compete with the best world analogues. I am sure that the victory in the competition and the implementation of the platform in Otkritie Bank will help Skolkovo residents to further strengthen their market positions in Russia and, in the future, take a leading position in the foreign market.”

“As a domestic manufacturer, we rely on our own production and support of an innovative Russian product. We liked the Security Vision solution for its flexibility and the ability to build a complete SGRC system based exclusively on Russian developments and achievements.”

“The work carried out to create the Security Vision monitoring and information security management service according to the MSSP model made it possible to increase the level of security of the Moscow Representative Office of Mitro Corporation and transfer the information security service to the category of managed ones, speed up decision-making in emergency situations related to availability, integrity and confidentiality of information.”

“Security Vision team are pioneers in information security automation in Russia, who have proven themselves as true professionals. They have their own unique solutions and give a large integrator an opportunity to be comprehensively represented in new and popular areas of information security (GRC, Security Intelligence, ISMS) with the help of Security Vision solution.”

“The finance industry is vulnerable to cyber attacks like no other. Realizing this, we strive to do everything possible to ensure that our information assets and, as a result, money and personal data of Otkritie Bank clients are under reliable protection. Cybercriminals are constantly improving their tools. However, we do not stand still, but increase the efficiency and expand the capabilities of the Security Operations Center. Thanks to the use of modern and reliable information security systems, such as Security Vision IRP / SOAR, we guarantee our clients the highest level of information security.”

“PIK Group recommends the Security Vision smart security solution as a single corporate security console.”

“HMS Group is a large holding. He is among the top 10 private engineering companies in Russia according to Forbes magazine and is one of the leaders in the production of oil and gas equipment. Reliable information security of a diversified, multidisciplinary and geographically distributed structure, which our holding is, is a very difficult task, which can be solved only with the help of IT products tested on large-scale, geographically distributed deployments. That is what Security Vision SOC is all about. I am grateful to colleagues from Security Vision for teamwork aimed at the result.”

“We consider our clients to be one of our main assets, therefore we carefully take care of protecting their information. The smart security Platform Security Vision allowed us to see the state of information security clearly; plan and translate it into the category of managed services of the Bank.”

“A set of works was successfully completed on the design and implementation of a change control system based on Security Vision software. The work carried out made it possible to increase the level of security of the corporate IT infrastructure of RusHydro and speed up the process of responding to incidents related to unauthorized changes in the active part of the network and server equipment.”

“Devon-Credit Bank thanks Security Vision software company for the implementation of monitoring and information security management systems, which allowed us to increase the level of security of the organization and accelerate decision-making in emergency situations related to availability, integrity and confidentiality information.”

“We expresses gratitude for the work done and confirm our interest in continuing long-term cooperation.”

“The information security monitoring and management center based on Security Vision has been successfully implemented. This solution has improved the security of information systems.”

“We express our gratitude to the colleagues from Security Vision for their work, and we hope for further successful cooperation.”

“All work was done efficiently and in full, proposals and comments from the specialists of the plant were taken into account. We express gratitude for the work done and hope to continue long-term cooperation.”

“During the design work, a modern, effective, and compliant with the requirements of the Russian legislation and additional requirements of the Customer, the SOIB subsystem was developed. It was successfully implemented in 2012. The Vostochny branch of Svetoservice LLC expresses its gratitude for the work done and hopes for further successful cooperation.”

“We expresses gratitude to the company. The work carried out made it possible to increase the level of security of the organization.”

“The conducted work has helped to increase the level of security of the organization and speed up decision-making in emergency situations.”

“The security event monitoring system has helped identify the source of infection on time and prevent the consequences of the Ministry's global virus distribution.”

“IBM QRadar's big data processing technologies with adaptive logic from Security Vision allow us to build a managed information security service that, in my opinion, is the best in the industry in terms of applicability and use. As a result of combining deep technical data and organizational workflow, an ISMS tool with BI analysis of retrospective data, visual representation of the results in 2D/3D, ticketing system, IoT connection in the context of each component of the information security subprocess is born.”

“It is very important for us that our products are integrated with the solutions of our technology partners, because this allows us to provide additional benefits to our users. Customers who use Security Vision in conjunction with our products get a more complete picture of the security status of their IT systems.”

“For several years, Kaspersky Lab has been working with Security Vision software company. The result of the technological interaction was the integration of a comprehensive solution for enterprise security with the Security Vision monitoring and management system.”

“The financial industry is more vulnerable to cyber attacks than any other. Realizing this, we strive to do everything possible to ensure that our information assets and, as a consequence, the finances and personal data of all clients of Otkritie Bank are under reliable protection. Cybercriminals are constantly improving their tools, however, we are improving and expanding the capabilities of the Information Security Center every day. Thanks to this, as well as through the use of effective information security systems, such as Security Vision IRP/SOAR, we guarantee the highest level of information security.”

“To increase operational efficiency, Russian Post is focusing on innovation, digitalization of the current product portfolio, and improvement of production and business processes. It is obvious that this activity "goes hand in hand" with the provision of reliable protection of information resources of our company and its customers. Given the scale of Russian Post, this task can only be solved with the help of the most effective cybersecurity product - such as the Security Vision IRP/SOAR. The system was implemented quite recently and is now showing excellent results.”

“Security Vision SOC is an IT product that is used in the information security management automation system of our organization. As Cybercrime does not stand still, constantly improving its "arsenal", a logical step is the periodic modernization of the information security system of our organization. As a result of the project implementation, the DSP provided collection, analysis and correlation of information security events, as well as enrichment of incident data with information from related systems and IT platforms. This allows us to identify information security incidents and respond to them at the earliest stages.”

“In this letter we express our gratitude for your cooperation in the field of information security and want to inform you about the successful implementation of the technical integration procedure between the HP ArcSight ESM (Hewlett-Packard) information security event monitoring system and Security Vision information security management system. Integration allows to transfer the information security service to the category of managed services, visually and quickly detect and timely respond to new information security threats. Integration allows to organize a single monitoring and management console through the connection of IT, IS and Automated process control systems. The integrated system allows to meet the information security requirements set by regulators, domestic and international standards in the field of energy (FSTEC Order No. 31, NIST SP 800-82, GOST R IEC 62443-2-1-2015, FSTEC KSII, FZ-117, FZ-256, etc.).”