FinCERT's Security Vision automates and optimises interaction with the regulator FinCERT. The product allows you to send real-time notifications of IS events to FinCERT (incidents, attacks and non-consensual transactions), receive queries from FinCERT about the organisation's monitored resources or customers that have been affected by malicious activity, and receive bulletins on current threats and vulnerabilities. The system is designed to meet all FinCERT requirements.
Handling incidents and attacks
The product ensures that the regulator is informed of recorded incidents and attacks in a timely and as complete as possible form. The lifecycle fully coincides with the regulator's requirements. Integration allows correspondence with the regulator directly from the incident card without going to FinCERT's personal cabinet, as well as sending and receiving files of all formats. To simplify the creation of incidents, cards can be pre-filled using templates. The entire history of incident actions and communication with the regulator is stored in a timeline.
Working with requests from FinCERT
Checks for regulatory enquiries, with the ability to provide specific information about the results of the incident investigation and actions taken or decisions made. The ability to correspond with the operator without going to your FinCERT account allows you to quickly ask clarifying questions or send required files. The chronology of communication is recorded in a timeline to maintain a complete history of requests.
FinCERT Bulletins
The product allows you to download regular bulletins on current vulnerabilities and threats sent by FinCERT. Flexible scheduling of bulletins and convenient alerts allow you to process the required number of documents in a timely manner.
Reports and Dashboards
The product includes both preconfigured reports that allow you to upload data on individual incidents and attacks, as well as summary reports that show the dynamics of interaction and consolidated information on the processed information.
Dashboard displays key information on incidents logged in FinCERT for a selected period and summary information on the status of current incidents. The operator is able to track in real-time incidents where an error occurred during submission to FinCERT so that they can respond in a timely manner and make the necessary corrections.
Integration with Security Vision products
The product integrates natively with all Secuirty Vision solutions, which allows not only to meet the requirements of the regulator, automating interaction with it, but also to build a full-fledged security complex, taking into account all processes and procedures of the SOC centre.
