24/7/365 monitoring of Trend Micro Deep Security by dedicated security analysts
Managed Security Service for Deep Security
Trend Micro’s host-based security solution “Trend Micro Deep Security” (hereafter, “Deep Security”) is a host-based security solution that can be deployed flexibly across on-premises and cloud environments without being constrained by the underlying infrastructure. At Asgent, the large volume of logs generated by Deep Security is monitored around the clock, 24 hours a day, 365 days a year, by our Security Operations Center (SOC), while dedicated security analysts perform correlated analysis.
Features
-
Early Detection of Incidents by Dedicated Security Analysts
Security events reported by Deep Security are analyzed and reported in real time. By correlating logs, communication patterns, and information about the applications used in your systems, we provide recommendations on appropriate response measures as needed.
-
Correlated Analysis of Multilayered Defense Functions
Deep Security implements multiple functions required to protect servers, including IPS/IDS, firewall, file integrity monitoring, and monitoring of changes to user information. Our service monitors the status of each of these functions and performs correlated analysis, enabling us to identify and respond to actual attacks that cannot be judged by looking at individual events in isolation. -
Significant Reduction in Operational Workload And Costs
Asgent takes care of signature application, operational validation, log analysis, and consideration of countermeasures, reducing the burden on organization’s internal IT staff. In addition, because they can use an infrastructure optimized for managed security services on a monthly subscription basis, they can reduce personnel and maintenance costs.
Key Service Offerings
| Security Monitoring |
・We monitor security logs from in-scope systems and notify customers of incidents assessed as high severity. ・Based on your customer’s request, we implement recommended countermeasures on your behalf. |
|---|---|
| Operation of In-Scope Systems |
・We perform configuration changes and operational monitoring for in-scope systems. ・When an anomaly is detected, we perform initial fault isolation to identify the affected components and promptly notify the customer. |
| Reporting | ・We compile aggregated security log results and ticket information and provide them as a monthly report. |
| MSS Portal | ・We provide operational information for in-scope systems, ticket functions, and various reports via the portal. |
| Information Provision | ・We distribute high-priority security information such as vulnerability alerts by email. |
| Inquiries | ・We accept inquiries related to the Managed Security Service (MSS). |
