SOC-as-a-Service


Information

Small and medium-sized businesses (SMBs) now confront the type of advanced cyberthreats that previously targeted only the largest and most sophisticated enterprises. Un­fortunately, these businesses typically lack cybersecurity experts on their IT staff. What’s more, they lack the budget necessary to fully secure their organization with an in-house Security Operations Centre (SOC).

VxCloud SOC-as-a-Services sensor is deployed in the clients IT infrastructure reporting back to the SOC with secure information to be analysed. Sensors are both physical and virtual to support hybrid cloud configurations such as Azure and O365. Sensor will support scanning of operations systems ,  servers, firewalls, desktops and more.


Security SOC-as-a-Service

Small, Medium and Large Enterprise Advanced Security

VxCloud Cybersecurity

VxCloud offers customers managed detection and response services by providing an end to end SOC security solution. The solution is significant because it provides a full turnkey SOC-as-a-Service solution from VxCloud small to medium enterprises.

VxCloud Cybersecurity

VxCloud Hybrid Security

VxCloud SOC-as-a-Service solution includes both on-site and cloud instrumentation to collect security logs from a customer site. VxCloud securely routes security information to a cloud-based, purpose-built SIEM platform than can ingest, parse and analyse unlimited amounts of log data.

VxCloud Hybrid Security

VxCloud Cost Effective Security

No expensive upfront costs are incurred partnering with VxCloud as your preferred SOC-as-a-service provider. VxCloud as an example offers a predictable, subscription-based pricing model for clients. It is again a new smart-tech concept to provide SD-WAN cloud networking with integrated security services.

VxCloud Cost Effective Security

VxCloud Security Staff

VxCloud Security Engineer (VSE) is allocated to a client as a single point of contact for the clients   SOC-as-a-Service. Clients VSE is your trusted security advisor and an extension of your internal security team. Conducts daily triage and forensics including customized services to your needs.

VxCloud Security Staff

VxCloud Security Hybrid AI 

Hybrid AI demonstrably identifies attacks, reduces false positives, and speeds up the time between detection and response. It augments a security engineer’s expertise with the efficiency and productivity of artificial intelligence. 10 times better threat detection coupled with Human Intelligence and intuition.

VxCloud Security Hybrid AI 

VxCloud SOC Rules Engine

Customized Rules Engine provides unlimited flexibility to tailor the SOC services to the specific needs of every customer. VxCloud Security Engineer will apply exact security and operational policies and update them as needed to align expeditiously with your changing business needs.

VxCloud SOC Rules Engine

VxCloud AD Security

Validate logging for optimal reporting and forensic capabilities. Tracking of AD, DHCP, DNS, changed to GPO, User changes, computer changes and failed logins. VxCloud SOC as a Services also includes semi-annual strategic reviews that will make sure AD is managed optimally and secure.

VxCloud AD Security

VxCloud Firewall Security

VxCloud collects your existing firewall configurations and network infrastructure diagrams. Meet firewall team and reviews the current configuration including zones, segments, object naming policies, rules and traffic policies. Recommend changes, backup and manage perimeter.

VxCloud Firewall Security

VxCloud Response Simulation

Response Simulation Service from VxCloud enables clients to assess the RS readiness with the guidance of our security experts who run multiple SMB SOC-as-a-Service. We review your current RS plan or develop one customized to your needs. CyberSOC process services end to end, deployed and managed.

VxCloud Response Simulation

VxCloud SD-WAN Security

VxCloud SD-WAN NFV (Network Function Virtualisation) includes Firewall Virtualisation from Fortinet, Palo Alto and Check Point. SD-WAN gateways, CPE devices and Firewalls are integrated and managed from the VxCloud SOC-as-a-Service managed solutions. SD-WAN security is top of mind for VxCloud. 

VxCloud SD-WAN Security

Network and Hybrid Cloud CyberSOC

VxCloud End to End Cyber Security Monitoring and Management


Frequently Asked Questions

First and foremost the Security Systems Engineer is the face of VxCloud to the customers. From day one the customer’s security engineer is their primary point of contact. Secondly they provide all the background security expertise for the service. They review incidents, they review alerts and they generate reports. This is typically done for dedicated customers, but we’ll also take turns across the customer base so that we have a variety of eyes looking at different data sources, and no one gets bored or alert-fatigued from reviewing the same data over and over again.

Having that personalized service, that one-on-one relationship, really allows us to leverage knowledge and implement customisations in ways that other vendors can’t. Your SE already knows you and your history, which allows us to be effective and to not waste the end user’s time by asking repetitive questions or asking them to explain something multiple times in a given month or quarter if it’s an ongoing issue.

Each team member is assigned a certain amount of research work in a given week. This is part of how we keep team members fresh, so they aren’t constantly doing the same type of work, and now have a chance to do something a little more on the cutting edge of threat hunting.

Sometimes we have them pick off a type of data such as Active Directory data, or DNS data or firewall data, and look at all of our customer data for a 90-day period or a year in search of anomalies or patterns. They’ll look through our different intelligence feeds and align them with what we’re doing for customers.

Our SEs also work with our security research teams—dedicated people from R&D who add in new algorithms and machine-learning techniques for continuous monitoring—to bring certain trends to their attention, maybe an interesting way to look at SSL traffic, so we can always stay sharp.

If we see something like ransomware and phishing, we call the customer directly. We open a ticket and track all of those interactions, but we want to talk to a human because time is of the essence. Once we notify the customer, for instance, that a certain machine has ransomware, we can certainly go into our appliances and quarantine that device.

But more often than not, it’s about dispatching the right person from the customer to that location to unplug the machine and collect the data we need to perform forensics. In those critical scenarios, we’re in real time on the phone with the customer.

VxCloud offers a SOC-as-a-service solution that meets the specific critical security requirements of small-to-medium enterprises. VxCloud CyberSOC is affordable and deploys in less than 60 minutes. It provides continuous network monitoring, log aggregation and correlation, incident response and Detection Response services, as well as personalized security services with a named security engineer to improve each customer’s overall security posture.

VxCloud experts can provide guidance regarding the different products and features. Please call us on 087 815 1000 or email us on admin@vxcloud.co.za.

A SOC is a combination of cybersecurity personnel, threat detection and incident response processes, as well as supporting security technologies that, in sum, make up an organization’s security operations. As cyberthreats evolve and grow, SOCs are gaining momentum. Increasingly, SMB’s are forgoing decentralized security operations, and enjoying the many benefits a SOC offers.