NetEye Security Operations Center (SOC) is designed to help users realize a smooth transfer from discrete security products to an integrated information guarantee system. In addition to the most advanced technologies, it also involves manual work and operating procedures to value three core elements inclusive of human, technology and operation. NetEye SOC not only helps users improve technological capacity, but assist them to improve security management system more efficiently. NetEye SOC is able to solve the problems of huge amounts of data and Information Island, and simplify the data model of security management on the whole. Security information from all kinds of network equipment shall be stored to a universal database and analyzed according to customized security policies. All information is related to assets so as to accomplish risk analysis, risk monitoring, and risk settlement. NetEye SOC, as a powerful weapon for security maintenance professionals in security operations, can analyze the security risk of the system constantly and put forward effective solutions in an efficient, flexible way. .

System Features

The architecture of NetEye Security Operation Center (SOC) includes four logic layers, i.e. data collection, data processing, application service, and presentation platform.

Data collection layer: Collect all types of security information according to the requirements from such data sources as network devices, security devices and main machine system, etc.
Data processing layer: Conduct correlation analysis and treatment of raw security information collected to standardize data format and save to database after merging and compression according to specific policies.
Application service layer: Extract data from the database and complete data filtering and condition analysis and provide data support for presentation platform; It is also the interface for resources configuration of the presentation platform.
Presentation platform layer: Realize the uniform interface presentation of NetEye Security Operation Center (SOC). The SOC realizes security monitoring, maintenance, management and presentation through this uniform graphic management interface.

Typical Deployment

NetEye Security Operation Center (SOC) includes display platform, data collection engine, application server and database server. It works with raw data source device to form a complete security maintenance solution.

Functions & Features

Reasonable assets management: Evaluate the value and corresponding risks of information assets accurately and scientifically;
Intuitive vulnerability management: Take charge of management and monitoring of vulnerability information of important asset presence, and present vulnerability of assets;
Scientific risk management: Center on asset to analyze asset risk and variation of risk according to asset value, vulnerability and threat, so as to give solutions to reduce the risk;
In-depth & accurate security information monitoring management: Take charge of collection, analysis, summary and processing of all types of security information, and give warning according to degree of emergency of security information and asset value; 
Effective security pre-warning: Conduct real-time analysis on current network status according to security events discovered and treatment results of security events, track the course of such events and give pre-warning on scope of hazard;
Flexible policy management: Control the configuration policies of the whole system, guide the operation of the system and adjust policies according to operation status of the system;
Professional workflow management: Real-time track the status, treatment process and final result of each work order;
Comprehensive security organization management: Maintain basic information of organization personnel and assign them with certain role, permission and task;
Complete security knowledge management: A platform for security knowledge release, security tool download and security communication;
Diversified report output: Provide flexible customization of report contents and forms according to requirement of different levels, and present the reports in various ways patterns and categories;
Rich and intuitive statistics graphics presentation: Provide multiple types of graphic presentation for various types of statistic information, including: asset and business based risk status presentation, security events based security pre-warning security pre-warning spread range, and work order processing efficiency presentation, etc., so that the organization can intuitively monitor its own security status, more accurately the priority level of risk treatment and execute work order tasks;
Secure & easy-to-use operation interface: With secure Web management mode adopted, uniform system management interfaces are available.