Enterprise Security Management is a broad-spectrum approach for the integration of guidelines, policies and proactive measures for managing the security of a company’s IT infrastructure. It covers all the risks and threats that can interfere with its core business. It concerns the definition of corporate security policies and management processes aimed at data protection, which then translate into the implementation of monitoring systems, detection / protection systems of endpoints, behavioral analysis systems and any other tool useful to IT Manager and operators of a SOC service to promptly detect a threat and implement the necessary security incident prevention and mitigation countermeasures.

How NSR works:

• SOC design and implementation services / SOC outsourcing service
• Security monitoring (SIEM systems implementation, collection, analysis, log storage using SIEM tools; real time monitoring), security incident management, user behavioral analysis.
• Security infrastructure analysis (organizational, technical and managerial), risk analysis, VA/PT (vulnerability assessment, penetration test) services for IT infrastructures, web applications and mobile applications.
• System configuration and management for perimeter security, endpoint security and IT asset management processes.

Products and Solutions:
RSA Netwitness, RSA SecOps, Securonix Snypr, Splunk, NSR Retina (IT Asset Management)
Vulnerability assessment tool: Qualys, Tenable Nessus, Rapid7
Endpoint protection systems: McAfee, Symantec, FireEye
Standard: ISO27001, OWASP, OSSTMM, Ethical Hacking

Main references:
Bank of Italy, IPZS, Arma dei Carabinieri, Ministry of Defense, Ministry for Economic Development, Unicredit Group, Poste Italiane, SOGEI