Netmagic provides a SOC team for monitoring and responding to alerts sent by the CNAM solution. The SOC team will work on a 24X7 basis and will be based out of Netmagic’s state of the art operations center in Mumbai.
Here is what the SOC team is in-charge of
Monitor and Investigate events:
The support team monitors and analyzes the events generated by the Central Event Processing Facility through the dashboard. It will investigate these events with the information provided in the dashboard and take prescribed actions on the attack sources.
Based on the analysis of the alerts the support team takes pre-decided preventive measures to block / monitor / escalate the attack source and mitigate the threat from that source address.
The support team is trained to handle / resolve events generated by the engine; however ambiguous events are escalated to the CNAM team for profound analysis and clearer action plan for that source address.
Team availability and decision-making:
The support team is available 24x7 to monitor events, take necessary action based on the criticality of the events. The team is also available to receive feedback on any urgent / escalated events from the CNAM team.
REPORTS PROVIDED through the CNAM service include
- Automated email notification for active attackers with recommended action and summary of attacks incident report
- An investigative report for all incidents that are handled by the CNAM team at NetMonastery Handlers Diary
- Attack information reports on the recent attacks and threats faced by networks under CNAM Advisories
- Advanced notifications on critical security issues that may cause vulnerabilities