RSEM Unique Features

RSEM has a highly evolved event management and threat management system that is a combination of the following features:

Advanced Multi-Layered Correlation Modules

RSEM enables security analysts to create advanced query filters that can be saved and run on the assets of an organization. These advanced filters are a combination of single filters connected in sync with the global CSIEM engine that correlates the logs and intelligence feeds arriving from multiple layers of correlation modules that are engaged with it. The correlation modules are implemented at various levels such as log collector, multi-site, multi group and multi CSIEM engines.

Global Intelligence Feeds

RSEM has a continuous flow of global intelligence feeds arriving in its central CSIEM engine. These security feeds are updated continuously and contain critical information such as blacklisted IPs, latest attacks, latest threats, etc. RSEM enables an organization keep itself abreast of this critical information and take necessary steps to secure its network from such attacks and threats.

Threat Management System

RSEM's multi layered correlation modules enables an organisation to correlate attack attempts on assets at multiple levels such as log collector, site, group or CSIEM of any organization that has deployed it and assimilates that information to draw inference about the attack patterns and distribute the information to all its users world over.

Feature Summary