Navigation

Management Solutions
:: Performance
:: Availability
:: Security


Vendor Solutions
  :: Apani
  :: Lancope
  :: McAfee
  :: nCircle
  :: Netcordia
  :: netForensics


:: White Papers
 NetForensics
 Product Information

   :: nFX SIM One
      :: Architecture
      :: Correlation
      :: Visualisation
      :: Incident Resolution
      :: Reporting & Analytics
      :: Security Knowledge
   :: nFX Cinxi
   :: nFX Data One
 
 Incident Resolution Management

Identifying threats to your network, applications, and valuable company data is critical to your risk management and regulatory compliance strategies. Yet at the same time, information security and compliance success relies largely on your ability to implement and document a repeatable process for responding to threats. Unless your SIM solution helps guide the security team and network operations change management groups through a repeatable incident response workflow, you can fail to effectively and permanently eradicate individual threats.

nFX SIM One: The Only SIM solution with a Fully Integrated Incident Resolution Workflow Based on Industry Best Practices

nFX SIM One provides an integrated incident resolution management workflow to help you overcome your most challenging security and compliance issues. By integrating the SANS Six-Step Incident Response process, nFX SIM One guides teams through a proven, repeatable incident response workflow, so you can effectively eradicate threats and prevent reoccurrences. Users are assured that each incident is handled with a rigorous, defined, documented, and complete process—simplified by preconfigured incident templates and customisable resolution procedures.


nFX Open Security Platform ships with an integrated incident response workflow that helps unify security and network operations teams throughout the remediation process.

Powerful Capabilities for Eradicating Threats and Preventing a Reoccurrence

Device Status View

  • A closed-loop workflow—triggered by information related to policy violations—that allows teams to easily contain and remediate violations
  • Assurance that vulnerable systems apply appropriate updates and definitions

Evidence Retention

  • The means to attach virtually any document, image, report, chart, or other relevant data to an incident case
  • The ability to add other files, such as scanned images, audio interview records, and traffic captures to cases—and any attachments are cryptographically check-summed upon insertion to assure the integrity of the evidence

Role-Based Access and Incident Collaboration

  • Assignment of incident cases to different users and shared among a group
  • Application of granular access controls to case data so that several analysts can collaborate on a case while maintaining important "need to know" authorisation structures
  • Audit log records of all actions performed by system users

Help Desk Integration

  • An incident resolution management process integrated with help desk products including HP Service Desk, Remedy, and Peregrine—to facilitate communication with the network operations and change management groups overseeing the patching process

Learn more about nFX SIM One's powerful capabilities for ensuring effective threat and risk management:

Download the nFX SIM One Data Sheet
 
home page  |  company  |  services  |  solutions  |  news roomjobs
© Copyright 2002 - 2009 iSimile Limited / netForensics Inc.