Fortis by Sentinel SOC Team of the Year

Additional Info

Job title of nominated professional (or team name)Fortis by Sentinel SOC Team
Company (where nominated professional or team is working)Fortis by Sentinel
Websitehttps://www.fortisbysentinel.com
Company size (employees)500 to 999
CountryUnited States
Headquarters RegionNorth America

Overview

When customers sign up for SOC services, Fortis takes an active role in keeping their company safe. That includes 24x7x365 monitoring throughout their entire network, including every user and device, whether it’s a phone, laptop, tablet, or Internet of Things (IoT) object.

The Fortis SOC enables businesses to build a strong threat protection strategy and architecture based around a comprehensive portfolio of signature, behavioral, and heuristic security technologies. Real-time traffic feeds combined with world-class threat intelligence from the Fortis Threat Exchange (FTE), Security Information and Event Management (SIEM), and regular assessments allow Fortis to send notifications and issue a service ticket/case the moment an alarm is triggered. From there, Fortis security analysts are available to assist with the identification, investigation, and guided remediation of the threat. On demand triage services are also available in a remote or on site capacity.

Accomplishments

* Fortis Threat Exchange - Fortis Threat Exchange (FTE) functions as an additional layer of security integration and automation based around intelligence trends gathered from security customers. FTE is always learning. The more customers Fortis has, the more visibility and insight they are able to incorporate into FTE. When combined with the Fortis intrusion detection sensor (IDS), it delivers heightened visibility, multiple points of detection, and additional capabilities beyond what most managed security offerings can provide. Additional IT infrastructure, cloud, and data sources are regularly added to the extensive list of Fortis-supported plug-ins.


* Security Information and Event Management - Security Information and Event Management (SIEM) provides advanced threat detection, analysis, monitoring, incident management, and visibility into the customers systems, network, and applications. SIEM is delivered from Sentinel’s CloudSelect® platform and adheres to strict multi-tenancy best security practices as well as regular third-party audits to ensure optimal performance. Using SIEM in conjunction with FTE, Fortis analysts are able to hunt, alert, notify, investigate, and remediate security threats very rapidly, ensuring Fortis subscribers can respond as quickly as possible to protect their most critical digital assets. SIEM data is dynamically updated to include up-to-the-minute threats along with custom correlation algorithms that capture and interpret security data across the environment.


* Security Assessment - Fortis offers comprehensive diagnostic evaluations of security operations to determine if a customer’s infrastructure, applications, and endpoints are correctly configured and implemented in ways that minimize risk and align with your organization’s security policies. Our certified experts stay current with security trends and the ever-evolving threat landscape, looking for weaknesses or gaps in coverage, misconfigurations or delays in patching, as well as any areas that fail to meet compliance requirements. Fortis then provides guidance on improvements and remediation of the customer’s environment.