Security Information and Event Management (SIEM)
Removing the noise
With ‘point & click’ simplicity and patented features, PacketViper can precisely reduce IP traffic volumes and perform SIEM optimization. This is done with a layered filtering approach that includes the ability to geo-target and perform precise filtering based on business intelligence, threat intelligence and customer rules, both inbound and outbound, at the port level.
Our Virtual Minefield Zone (VMZ)™ solves the challenges of static perimeters in firewalls and creates a dynamic perimeter that can automatically change the access rules around any port or service and rotate when they are turned on or off. The VMZ also attracts threats, deceives them and gains new intelligence.
All of this improves the IDS/IPS threat identification process, lowers false positives and reduces alerting to security teams and SIEM related costs.
Addressing the challenges of SIEM optimization
Successfully deploying a SIEM is a complex task and the complexity is further amplified by the unmanageably high amounts of noise from within the network and from the skyrocketing volumes of global IP traffic constantly hitting the network.
Furthermore, with some SIEM vendors, depending on their pricing structure, the inability to control complexity and IP traffic volumes can drastically increase subscription or license related costs.