The Operation Center service within the SST-Havelsan Cyber Security Technology Center is offered on 7/24 basis with talented and experienced personnel of HAVELSAN. Processes such as monitoring, analysis and alarm of cyber incidents, service continuity and cyber threat intelligence analysis are implemented at this operation center. These services can be obtained individually as well as package solutions.
These services are offered using new technologies and updated threat prevention components such as conventional network security solutions like Firewall (FW), Intrusion Detection / Prevention System (IDS / IPS), content filtering (CF), Secure Remote Access (SSLVPN), E-mail / Internet Antivirus Gateway (AVGW) as well as Next Generation Firewall (ngfw) and Distributed Denial of Service Attack (DDoS) prevention, Central Trace Collection and Event Correlation and Alarm Generation Systems (SIEM).
Vulnerability audits and infiltration tests are conducted at clients' facilities and results of these tests are reported in detail prior to providing these services. Where necessary, after giving security tightening services, the Cyber Security Operation Center Service initiated by signing a client-specific contract.
Central Trace Collection, Event Correlation and Alarm Generation Systems (SIEM) solutions, installation of these software packages, integration, development of complex correlation rules, not only storage of records, but also analysis and reporting of them are performed by competent and experience specialists. Records can
be monitored on a 7/24 basis. In addition, abnormality detections can be made thanks to the capability of “Big Data” analyses from large stacks of records to form. As part of our event analysis and intervention services, the most notorious cyber security threat, the malwares, is statically and dynamically analyzed by our teams specialized in this field using most recent techniques and tools and the damage on the client’s information system is assessed.
- Real-Time Security Systems Monitoring and Warning / Alarm
- Cyber Event Management
- Cyber Event Analysis
- Response to Cyber Events
- Cyber Event Reporting
- • Cyber Threat Intelligence
- Open Source Intelligence
- Social Media Monitoring
- Zero-Day Security Vulnerability analysis and reporting