STREAM Cyber Security

Transcription

1 STREAM Cyber Security Management Software Governance, Risk Management & Compliance (GRC) Security Operations, Analytics & Reporting (SOAR) Fast, flexible, scalable, easy to use and affordable software for GRC and SOAR

2 Example STREAM users

3 Recognition SC Magazine Risk and Policy Management Group test: There are lots of dashboards and drill-downs that allow analysts to craft reports that view the organization's risk position from a variety of perspectives. In addition, good workflow management allows creation of task sets for remediation and analysis. You can map just about anything to anything, allowing a close inspection of where risks emerge and how to address them best. Pricing is excellent, putting this tool well within the range of most organizations

4 Recognition OVUM 2015

5 Recognition 2015 / 16 Main list (Q1 2016) # 301 Globally # 42 in Europe IT Governance, Risk & Compliance (GRC) companies list # 11 Globally # 2 in Europe Acuity listed as a Representative Vendor in a 2015 Gartner report Acuity has been listed by Gartner as a Representative Vendor of Security Operations, Analytics and Reporting (SOAR) technologies, associated with the Threat and Vulnerability Management Use Case, one of three Use Cases in the report. Security operations, analytics and reporting (SOAR) technologies rationalize cross-vendor security controls in asset and business contexts

6 STREAM automation for Cyber security Enterprise Risk Management Cybersecurity, Business continuity, HSSE, Quality, IT service management, Vendor Cybersecurity Software Cybersecurity Compliance ISO 27001, PCI, NIST. Continuous compliance monitoring Remediation workflow Governance, Risk Management, Compliance (GRC) Security Operations, Analytics, Reporting (SOAR) Cybersecurity Operations Management Rationalization from multiple cybersecurity technologies Risk-based prioritization of security operations activities Cybersecurity Risk Management Enterprise risk reporting Asset-based threat & vulnerability management Incident management

7 You can do all of this in a Single Integrated Database with shared dashboards, reports and supporting processes User Management Alerting / Reminders Dashboards & Reporting Workflow and Scheduling Action Management

8 Personal Home Page At a glance status of risks, controls and incidents Integrated workflow with automated notifications and alerting

9 Control summary ISO example Report on control status by business area and control standard Aggregate up by various groupings or the entire Enterprise

10 Imported vulnerabilities Import and automatically assign ownership of vulnerabilities Automatically update compliance and risk status

11 Auto assignment of actions Automatically assign remediation actions to asset owners Escalation, alerting and workflow

12 History of incidents & near-misses

13 Average impact of incidents

14 Top 10 risks

15 Summary views of Risks View risks in relation to tolerance and business risk appetite Example shows summary risk status across the Enterprise

16 Drill-down for detail Detailed information risk register for the UK Trading business area See Red, Amber & Green risks and risk acceptance status

17 Key controls and metrics See the performance status of controls which mitigate each risk and the relative importance of each control

18 Business benefits Transform cyber security data into actionable cyber security information In the language of Enterprise Risk Management which business leaders can understand. At a glance real time views of cyber security status and actions Answering the big questions: Business benefits What are our current levels of cyber security risk across the Enterprise? Are they tolerable? Reduced likelihood of damaging breaches Better decisions on resource allocation What is our prioritized response? Demonstrable compliance Enhanced reputation

19 Free single-user Edition Download a free single user edition from Free on-line training tutorials Prove the benefits then upgrade to a multi-user edition

20 Flexible deployment options On-premises Web browser Mobile Traditional or virtualized client server, e.g. Citrix Private cloud Hosted from UK ISO certified data centre Web browser Mobile

21 Market positioning of STREAM

22 Liberty House, 222 Regent Street, London W1B 5TR