SOT

SOT

SOAR
Security Orchestration, Automation and Response

Automation of response to information security incidents using dynamic playbooks and information security tools, building an attack chain and with an object-oriented approach

NG SOAR
Next Generation SOAR

Automation of response to information security incidents with built-in basic correlation (SIEM), vulnerability Scanner (VS), collection of raw events directly from information security tools, dynamic playbooks, building an attack chain and an object-oriented approach. AM and VM are included

AM
Asset Management

Description of the IT landscape, detection of new objects on the network, categorization of assets, inventory, life cycle management of equipment and software on automated workstations and servers of organizations

VS
Vulnerability Scanner

Scanning information assets with enrichment from any external services (additional scanners, The Data Security Threats Database and other analytical databases) to analyze the security of the infrastructure.

VM
Vulnerability Management

Building a process for detecting and eliminating technical vulnerabilities, collecting information from existing security scanners, update management platforms, expert external services and other solutions

FinCERT
Financial Computer Emergency Response Team

Bilateral interaction with the Central Bank, namely the transfer of information about incidents and receipt of prompt notifications/bulletins from the regulator

GovCERT
Government Computer Emergency Response Team

Bilateral interaction with the state coordination center for computer incidents, namely the transfer of information about incidents and receipt of prompt notifications/bulletins from the regulator

Mail us to sales@securityvision.ru or get demo presentation

SDA

SDA

TIP
Threat Intelligence Platform

Cybersecurity threat data collection, analysis, enrichment, infrastructure detection, investigation and response.

UEBA
User and Entity Behavior Analytics

Building behavior models and detecting deviations from them using several dozen built-in static analysis rules.

AD + ML
User and Entity Behavior Analysis

Dynamic behavioral analysis to search for anomalies using machine learning and to search for possible incidents.

Mail us to sales@securityvision.ru or get demo presentation

GRC

GRC

RM
Risk Management

Formation of a register of risks, threats, protection measures and other control parameters, assessment using the chosen methodology, formation of a list of additional measures to change the level of risk, control of execution, periodic reassessment.

ORM
Operational Risk Management

Accounting and recording of operational risk events, monitoring of key risk indicators and self-assessment/control

CM
Compliance Management

Audit of compliance with various methodologies and standards

BCM
Business Continuity Management

Automation of ensuring continuity and restoration of activities after emergencies.

OTS
Operational Technology Security

Operational Technology Security

Mail us to sales@securityvision.ru or get demo presentation

DEMO
presentation

SOT

Technology
SOAR

Security Orchestration, Automation and Response
NG SOAR

Next Generation SOAR
AM

Asset Management
VS

Vulnerability Scanner
VM

Vulnerability Management
FinCERT

Financial Computer Emergency Response Team
GovCERT

Government Computer Emergency Response Team

GRC

Processes
RM

Risk Management
ORM

Operational Risk Management
CM

Compliance Management
BCM

Business Continuity Management
OTS

Operational Technology Security

SDA

Analytics
TIP

Threat Intelligence Platform
UEBA

User and Entity Behavior Analytics
AD + ML

User and Entity Behavior Analysis

All products

SOT

Technology

SOAR

Security Orchestration, Automation and Response

NG SOAR

Next Generation SOAR

AM

Asset Management

VS

Vulnerability Scanner

VM

Vulnerability Management

FinCERT

Financial Computer Emergency Response Team

GovCERT

Government Computer Emergency Response Team

GRC

Processes

RM

Risk Management

ORM

Operational Risk Management

CM

Compliance Management

BCM

Business Continuity Management

OTS

Operational Technology Security

SDA

Analytics

TIP

Threat Intelligence Platform

UEBA

User and Entity Behavior Analytics

AD + ML

User and Entity Behavior Analysis
All products
Clients FAQ

Security Vision's ‘tricks’: navigation and search

Security Vision's ‘tricks’: navigation and search
20.02.2023

  |  Listen on Google Podcasts  |   Listen on Mave  |   Listen on Yandex Music  |  


Roman Dushkov, Security Vision


We continue publishing the series ‘Security Vision's “Features”’, the purpose of which is to introduce you to interesting solutions in our products. This article is dedicated to the peculiarities of navigation and search tools.


Quick links for navigation



Often, to find the necessary objects among thousands of others, one uses either BI with interactivity or filtering with the use of logical rules. In addition to these mechanisms, the Security Vision platform implements quick links by section. This allows you to switch, for example, between a list of all incidents to incidents of a certain group (VPO, phishing, etc.) or work with groups of IT assets (hosts and servers, printers, network equipment, etc.).


Use tabular lists without having to dive into the details of each asset



The tabular view is used to group cards of similar objects, such as IT assets. Classically, to view the details, you have to ‘dive’ into the right row of a table to run a process or see data. In the Security Vision platform, transactions can be launched directly from the table. This allows the SOC operator to increase the speed of processing a large number of incidents.


Mass transactions and working with large amounts of data



Often, to solve IS tasks, it is necessary to perform a single operation on several objects at once, for example, to run anti-virus scanning on hosts in a dedicated network segment. Security Vision allows you to perform bulk property changes and start processes directly from the tabular list. This feature allows you to change the status, priority, executor and other properties of many objects at once and start a new process for them, such as grouping or deleting.


Performing actions from any object card



The platform supports the ability to create and execute actions in the form of launching atomic workflows for related objects directly from the card field, as well as from the general tabular list of cards. There is no need to navigate to the list of workflows or set up a separate schedule to run them, which increases mobility and autonomy of response and audit teams.


Sort and filter to quickly find any data you need



To quickly find data when there is a large amount of data, it can be convenient to search by specific fields or by all parameters at once. The platform supports not only quick links to open relevant ready-to-use views, but also sorting, searching and filtering functions to select data in real time.

Recommended

Dynamic IRP/SOAR 2.0 playbooks on the Security Vision 5 platform
Dynamic IRP/SOAR 2.0 playbooks on the Security Vision 5 platform
information security IRP SOAR

18.07.2023

OWASP Top 10 methodology attacks on web-based systems
OWASP Top 10 methodology attacks on web-based systems
information security

27.05.2024

Why and how to display information: object constructor
Why and how to display information: object constructor
information security

19.12.2022

MITRE publication ‘11 Strategies for a World Class SOC Centre’. Introduction (Strategy #0)
MITRE publication ‘11 Strategies for a World Class SOC Centre’. Introduction (Strategy #0)
information security SOC MITRE

24.04.2023

Features of the new version of the Asset and Inventory Management product on the Security Vision 5 platform
Features of the new version of the Asset and Inventory Management product on the Security Vision 5 platform
information security

13.05.2024

Lessons Learned: why it's never a shame to take on and redo everything
Lessons Learned: why it's never a shame to take on and redo everything
information security SOC TIP

28.03.2024

Threat analysis and cyber intelligence: what problems the updated Security Vision TIP solves
Threat analysis and cyber intelligence: what problems the updated Security Vision TIP solves
information security IRP SOAR

01.12.2022

Vulnerabilities
Vulnerabilities
information security

04.03.2024

What the hell is Security Champion?
What the hell is Security Champion?
information security

07.11.2023

Why you need user monitoring and how it works
Why you need user monitoring and how it works
information security UEBA (User and Entity Behavior Analytics)

05.09.2022

Bespoke hacking: who does it and why, what is most often hacked
Bespoke hacking: who does it and why, what is most often hacked
information security

12.11.2024

Vulnerability Management module on the Security Vision platform
Vulnerability Management module on the Security Vision platform
information security

28.04.2022

Recommended

Dynamic IRP/SOAR 2.0 playbooks on the Security Vision 5 platform
information security IRP SOAR

18.07.2023

Dynamic IRP/SOAR 2.0 playbooks on the Security Vision 5 platform
OWASP Top 10 methodology attacks on web-based systems
information security

27.05.2024

OWASP Top 10 methodology attacks on web-based systems
Why and how to display information: object constructor
information security

19.12.2022

Why and how to display information: object constructor
MITRE publication ‘11 Strategies for a World Class SOC Centre’. Introduction (Strategy #0)
information security SOC MITRE

24.04.2023

MITRE publication ‘11 Strategies for a World Class SOC Centre’. Introduction (Strategy #0)
Features of the new version of the Asset and Inventory Management product on the Security Vision 5 platform
information security

13.05.2024

Features of the new version of the Asset and Inventory Management product on the Security Vision 5 platform
Lessons Learned: why it's never a shame to take on and redo everything
information security SOC TIP

28.03.2024

Lessons Learned: why it's never a shame to take on and redo everything
Threat analysis and cyber intelligence: what problems the updated Security Vision TIP solves
information security IRP SOAR

01.12.2022

Threat analysis and cyber intelligence: what problems the updated Security Vision TIP solves
Vulnerabilities
information security

04.03.2024

Vulnerabilities
What the hell is Security Champion?
information security

07.11.2023

What the hell is Security Champion?
Why you need user monitoring and how it works
information security UEBA (User and Entity Behavior Analytics)

05.09.2022

Why you need user monitoring and how it works
Bespoke hacking: who does it and why, what is most often hacked
information security

12.11.2024

Bespoke hacking: who does it and why, what is most often hacked
Vulnerability Management module on the Security Vision platform
information security

28.04.2022

Vulnerability Management module on the Security Vision platform

Other articles

Why and how to build data networks
Why and how to build data networks
information security

16.10.2023

SSDL: ML for code and behaviour testing of opensource solutions
SSDL: ML for code and behaviour testing of opensource solutions
information security

30.05.2024

Practical protection of personal data. How should a company handle and protect personal data? Part 2
Practical protection of personal data. How should a company handle and protect personal data? Part 2
information security

21.06.2021

Development without code
Development without code
information security SOAR

24.06.2024

New capabilities of TIP, SGRC, IRP/SOAR, UEBA and Anomaly Detection on the Security Vision 5 platform
New capabilities of TIP, SGRC, IRP/SOAR, UEBA and Anomaly Detection on the Security Vision 5 platform
information security SOAR SGRC

18.04.2023

Security of transfers and payment for goods via SBP. Part 1
Security of transfers and payment for goods via SBP. Part 1
information security

06.06.2022

SGRC by law. Finance
SGRC by law. Finance
information security

08.11.2021

Review of NIST Publication SP 800-83 "Guide to Malware Incident Prevention and Handling for Desktops and Laptops"
Review of NIST Publication SP 800-83 "Guide to Malware Incident Prevention and Handling for Desktops and Laptops"
information security

27.12.2022

Overview of information security tools: users and data
Overview of information security tools: users and data
information security IRP SOAR

19.09.2022

Other articles

Why and how to build data networks
information security

16.10.2023

Why and how to build data networks
SSDL: ML for code and behaviour testing of opensource solutions
information security

30.05.2024

SSDL: ML for code and behaviour testing of opensource solutions
Practical protection of personal data. How should a company handle and protect personal data? Part 2
information security

21.06.2021

Practical protection of personal data. How should a company handle and protect personal data? Part 2
Development without code
information security SOAR

24.06.2024

Development without code
New capabilities of TIP, SGRC, IRP/SOAR, UEBA and Anomaly Detection on the Security Vision 5 platform
information security SOAR SGRC

18.04.2023

New capabilities of TIP, SGRC, IRP/SOAR, UEBA and Anomaly Detection on the Security Vision 5 platform
Security of transfers and payment for goods via SBP. Part 1
information security

06.06.2022

Security of transfers and payment for goods via SBP. Part 1
SGRC by law. Finance
information security

08.11.2021

SGRC by law. Finance
Review of NIST Publication SP 800-83 "Guide to Malware Incident Prevention and Handling for Desktops and Laptops"
information security

27.12.2022

Review of NIST Publication SP 800-83 "Guide to Malware Incident Prevention and Handling for Desktops and Laptops"
Overview of information security tools: users and data
information security IRP SOAR

19.09.2022

Overview of information security tools: users and data

This website uses cookies to ensure you get the best experience.