Published on March 11, 2014
MARCH 2014 What’s New in AlienVault USM v4.5? USM Customer Webinar
AGENDA Feature Overview Examples of how to use USM New Health Check Service Offering Questions
New v4.5 Features
SUMMARY OF NEW FEATURES New Look and Feel New Plugin Suggestion Engine New Errors and Warnings Dashboard First Time Wizard Improvement New Status Monitors Alarm Tag Forwarding
NEW LOOK AND FEEL Feature Summary: Color, layout, and style improvements Common library of UI elements (buttons, tables, interaction, workflow) Value to You: More intuitive, consistent, and easy to use Predictable, consistent interaction and workflow Reduced learning curve, increased time to value – “results in day one”
PLUGIN SUGGESTION ENGINE Feature Summary: Identify assets sending data but with no plugin enabled Identify assets not sending data and with no plugin enabled Offer suggestions and built-in workflow to enable the proper plugin Value to You: More easily identify assets with no data collection and help the user easily enable the right plugin Increase time to value when configuring new assets.
NEW WARNINGS & ERRORS DASHBOARD Feature Summary: Warn administrators of conditions that require attention Provide suggestions on how to resolve the error or warning Value to You: Self-monitoring to prevent system failure Proactive notification
FIRST TIME WIZARD IMPROVEMENT Feature Summary: Separated the Log Management step into two separate pages Provide better clarity about each asset, plugin selected, and if AlienVault is receiving data. Value to You: Make the log management section more intuitive and easy to use. Provide better information to tell the user if AlienVault is collecting data or not.
NEW STATUS MONITORS Feature Summary: Built-in monitors to assess the system for failure conditions Monitors Available: The Asset is not sending any log to the system Asset is sending log to the system, but there isn't a plugin enabled to parse the logs The Asset was successfully sending logs to the system, but no log received within the last 24 hours The System is dropping packets, overloaded The System is dropping packets, malformed network packets The System Disk space is under 25% The System Disk space is under 10%
ALARM TAG FORWARDING Feature Summary: Alarms sent from a child server in a federated environment are tagged to uniquely identify the source Customer Value: Better support in MSSP, federated environments Allow users to more easily discern what child server an alarm was generated on
Use USM to Answer Simple Questions
Is one of your system administrators running a bittorrent in the data center?
What known malicious hosts are your systems talking to?
Which of my vulnerable assets are under attack?
Introducing… USM Health Check Service
Let us help you tune your AlienVault USM deployment so you can maximize the value of your investment. USM Health Check Service Validate that USM components are performing optimally and within specification Assess directives, policies, and alarms to get you results you are expecting Provide guidance on how to most effectively utilize USM to get results. Deliver a comprehensive findings report to drive correction and improvements.
This Service Is For … Who have … A single All-in-One [25A, 50A, 75A, 150A, or Standard] A Standard USM Server, Standard Sensor and Standard Logger combination A Standard USM Server or All-in-One with up to 5 remote sensors Other Options Available Existing s
A Certified AlienVault Consultant will … Spend one day (8 hours) to evaluate your deployment Services performed remotely Evaluate … Operating system configuration and health • Query performance and indexing response times • USM content memory utilization • Sizing, capacity, and growth metrics • Data collection and plugin health • Policies to determine false positives and optimization options Report delivered at the end of the engagement to provide … • Investigation results • Any remediations done during the engagement • Recommendations
Contact firstname.lastname@example.org Interested?
Presentación que realice en el Evento Nacional de Gobierno Abierto, realizado los ...
In this presentation we will describe our experience developing with a highly dyna...
Presentation to the LITA Forum 7th November 2014 Albuquerque, NM
Un recorrido por los cambios que nos generará el wearabletech en el futuro
Um paralelo entre as novidades & mercado em Wearable Computing e Tecnologias Assis...
OSSIM v4.5 is here! ... OSSIM v4.5 works hard to save you time. Join us for this FREE user training session to learn more about what's new in OS ...
View 66294 Customer Training posts, presentations, experts, and more. Get the professional knowledge you need on LinkedIn.
Customer training creates company longevity Views 13 views. With so many companies, customer training is an afterthought...The products release, the ...
... and how you can detect infections quickly with AlienVault USM. ... based customer training where we will ... need for complete Threat ...
The AlienVault Unified Security Management™ (USM) ... but rather quickly detect threats and accelerate compliance by ... Learn More About our Threat ...
Get Help Quickly with Free Online Support ... quickly detect and effectively respond to the latest threats. ... Training. Support & Services; Customer ...