SIEM Co-Sourcing

Co-sourcing is designed for organisations who wish to transition from ad-hoc or non-existent internal security monitoring position, to a mature security risk management positio,n without the need for large resource commitments.

A typical co-sourcing program will be defined by a 3-5 stage roadmap over a 12 to 24 month timeframe which begins with event log data consolidation, and then subsequently adds correlation, analytics and reporting, asset and vulnerability management and finally introduces documented, measurable incident detection and response processes.

Unlike typical managed security services, co-sourcing is internally focussed and encompasses complex application, database and web service applications that managed service providers cannot deal with.