Security Monitoring as a Service (SMaaS)
The SMaaS monitors your environment in real-time 24 hours a day – 7 days a week monitoring for anomalous behaviors. BrokenArrows SMaaS includes monitoring all of your environment logs and telemetry such as:
- End-Point Access and System Logs
- Intrusion Detection / Prevention Systems Alerts
- Firewalls
- Enterprise Detection and Response Alerts
- Cloud Platform Logs (AWS, Azure, GCP)
- Application Logs (Web and Database Access)
- Web Application Firewall Logs
- Netflow / VPCflow logs
- Anti-Virus Alerts
- …and many more
BrokenArrow pulls all client logs and telemetry into their custom Machine Learning platform to build models of normalized traffic to quickly identify outliers and anomalous activities.
As a commitment to our customer satisfaction, BrokenArrow provides the client with a weekly summary of work and a monthly management report of threats identified and remediated.
Vulnerability Management as a Service (VMaaS)
The VMaaS monitors your environment for outdated patches and configuration issues that create vulnerabilities into your environment. BrokenArrows VMaaS will provide the client vulnerability scanning on a monthly basis, which performs authenticated scanning of the client infrastructure identifying weaknesses that could be exploited. BrokenArrow tests for false positives and assesses for compensating controls to ensure a proper priority for remediation.
Remediation Management as a Service (RMaaS)
The RMaaS is an automated method for resolving security issues within your environment in an automated manner. The RMaaS takes vulnerability management remediation suggestion, such as patch update and configuration updates, and then performs the following process:
- Builds the environment in a secure location
- Apply remediation suggestion
- Perform regression testing against the environment according the clients test specifications
- Once the regression confidence level meets a client acceptable level changes are pushed to production