CYBERSHIELD MnR

CYBERSHIELD MnR
Keeping pace with continuous
cyber threats
Fighting Cyber Attacks Around the Clock
Cyber security incidents are becoming more prevalent and increasingly complex to manage. These sophisticated attacks
require organizations to effectively handle information overload across a range of different systems and teams to protect a
wide array of assets.
Organizations are required to respond quickly and effectively to the most severe threats in order to prevent the potentially
serious reputational, operational, legal and regulatory consequences of these attacks.
Many organizations are being overwhelmed by these ongoing, multi-faceted security breaches. Current Security Incident
and Event Management (SIEM) capabilities have proven ineffective for managing these sophisticated continuous attacks as
stand-alone systems.
Closing the widening gap: Quick & effective mitigation and response
So how can organizations respond effectively to advanced threats while being in a state of continuous attack?
The CyberShield Mitigation and Response (MnR) solution closes the widening gap between today’s sophisticated, continuous cyber threats and the limited mitigation capabilities of current monitoring and security systems.
CyberShield MnR augments your SIEM and security apparatus to shorten cyber event handling times by improving the efficiency of the response process. It enables a more accurate and informed process to mitigate and respond to cyber threats.
•
CyberShield MnR is the primary management and
control system for Cyber SOCs, that enables cyber
security operations to:
• Orchestrate and control cyber security continuous
incident response across shifts and geographies
• Manage response teams while mitigating
thousands of suspicious incidents
•
he solution has dedicated knowledge and process
T
management tools, so you can:
• Facilitate automation and central control
of work processes
• Effectively manage cross-organizational
workflows in real-time while under attack
•
The solution leverages advanced business
intelligence and information retrieval capabilities, to
empower cyber security operations to:
• Fully understand the scope & evolution
of cyber threats
• Constantly learn and improve the effectiveness
of cyber SOC through built-in comprehensive
reports, dashboards and queries
• Respond quickly to regulatory requirements and
internal compliance procedures
Summary of main benefits
FAST AND EFFICIENT MITIGATION
driven by dedicated workflows and
automation tools
REAL-TIME SITUATIONAL AWARENESS
for routine and crisis operations with
dedicated BI and reporting
CONTINUOUS EFFECTIVE RESPONSE
leveraging best practices, recommendations &
previous incidents for cross-team alignment
HOLISTIC RESPONSE
through integrated, cross-organization cyber
mitigation processes
Do you need a dedicated Cyber Mitigation and Response Platform?
As cyber threats become increasingly sophisticated, industry best practice outlines the key drivers for
organizations that require a comprehensive Cyber Mitigation and Response solution. Does your organization:
•
•
•
•
•
•
… experience numerous and complex security incidents?
… coordinate multiple security applications and streams of activity executed by large teams?
… require rapid, round-the-clock response to security incidents?
… coordinate security incident response across different roles and expertise levels?
… manage security incident response across numerous systems throughout the organization?
… have stringent regulation and internal control procedures relating to cyber security?
CyberShield MnR provides a cross-organization, unified platform
for continuously managing the organization’s cyber security
efforts, while automating a wide range of activities.
The solution offers a new approach to cyber threat mitigation and
comprises the following components:
Cyber situational awareness that
consolidates and analyses the
endless data flow from internal
& external sources to provide
real-time, unified cyber situation
awareness reports and dashboards
Smart decisioning and response
execution to ensure a semiautomated, integrative crossenterprise response by impact-based
prioritization, SOP recommendation
and response utilities activation
Monitoring and orchestrating the
core SOC operation by gathering
cyber alerts from multiple sources
and managing the entire flow of
cyber incident containment
Enhanced SOC management tools
that include shift management,
audit trail, operational queries and
reports
Cyber intelligence module that
generates, maintains and publishes
the holistic SOC cyber intelligence
assessment
CyberShield MnR is integrated with common SIEM systems and
other security applications to provide an integrative visualization
of incidents, threats and attacks and the operational environment.
Test your cyber security operational readiness:
Are you adequately prepared to mitigate today’s
sophisticated and continuous cyber security threats?
Ensure consistent performance by all teams according to evolving best practices
Link and learn from previous incidents
Manage multiple incidents while adhering to process workflows and tasks
Manage cross-organization cyber-attacks, including beyond SOC
Manage continuous cyber-attacks across shifts
Align all personnel with relevant real-time information
Ensure privacy control through comprehensive permission management
Maintain full situational awareness of operational threats and effectiveness
Have access to all past incidents and events
Leverage wider cyber intelligence and analysis
CyberShield MnR is fully operational in high scale
enterprises and governmental organizations, where the
solution is supporting the ongoing activity of the Cyber
SOC through distributed teams across geographies.
An actual Tier-1 bank SOC
powered by CyberShield MnR
CYBERBIT Ltd.
Hamachshev 2, Netanya 4250712, Israel
Tel: 8864525-9-972, Fax: 8864556-9-972
cyber.sales@elbitsystems.com | www.cyberbitc.com
CYBERBIT Systems Ltd and others 2015 @ This brochure contains CYBERBIT proprietary information 2015/2
Handle a stream of alerts while properly documenting all activities and insights