User Interfaces within Arcsight
Manages users,storage and event data.
Monitors events
Generate Reports
Updates Licence
Arcsight Console :
Builds filters,rules,reports,pattern discovery and dashboards
Monitors data
Administer users and workflow
Arcsight Web :
Web interface to Manager
Monitors events .
Used to drill down dashboard ,reporting and notification for Security Analyst
Arcsight Risk Insight :
Assess business impact due to specific threat as per defined rules
Pattern Discovery :
Detects various patterns of events flow and used to
Discover day zero attacks
Discover low and slow attacks
Profile common patterns in network
Automatically creates rules
Arcsight Express :
Separately licenced SIEM appliance and it is easy to deploy enterprise level security monitoring and response system with inbuilt rules,dashboard and reports.
Logger :
Receives events from syslog messages ,log files and smart connectors.
Stores events in compressed form
Forwards specific events to ESM
Arcsight NCM/TRM
Locates devices in network
Applies protocal filters to curb intrusion
Blocks specific IP ranges
Disable individual user accounts
Audits changes
Sap ABAP On Hana online courses
ReplyDeleteSAP Grc online courses
SAP Secrity online courses
oracle sql plsql online courses
go langaunage online courses
azure online courses
java online courses
salesforce online courses
hadoop online courses