Universal SIEM
Prelude is a Universal "Security Information Event Management" (SIEM) system. Prelude collects, archives, normalizes, sorts, aggregates, correlates and reports all security-related events independently of the product brand or license giving rise to such events; Prelude is "agentless".
A Security Information and Event Management (SIEM) gathers heterogeneous information system equipment data at a single point and provides comprehensive human-readable security reports.
An effective SIEM solution:
• manages internal or external threats in real time
• gathers, archives and analyzes data and generates reports
• analyzes security events-related data
• improves compliance to regulation
• provides forensic capabilities
A SIEM thus allows to:
• prevent security flaws or data leaks
• effectively implement internal or external security policies
• be warned about potential threats and suspicious events over the network
• immediately link events to their consequences
• locate bottlenecks or low-efficiency areas and know their causes
• monitor activity over the network and manage risk efficiently
• provide proofs of best practices for audits
A SIEM solution must help keep the information system fully secure and functional and enhance its level of protection.
A SIEM solution must process threats in real-time. It thus help thwart threats and protect the organization assets.
A SIEM solution must make it easy to gather and analyze information from all information system equipment and alleviate administration tasks, thus providing a high return on investment.