TEHTRIS SIEM (Security Information and Event Management) centralizes and organizes the management of all security logs: events and logs of systems, applications and network or security equipment. Once collected, archived and encrypted, these elements are analysed on a continual basis. TEHTRIS SIEM comes with more than 450 correlation rules to detect suspicious activity and to report alerts in all traditional business environments such as Windows, Unix, Cloud, Firewalls, proxies, etc.
By exporting your logs to TEHTRIS SIEM VMs, you limit the risk associated with the loss of activity evidences from the system, application and infrastructure layers. In the event of a break in, attackers would no longer be able to erase their fingerprints from the logs, and you would be able to follow the hacking progress thanks to TEHTRIS XDR Platform.
In addition, retrospective analysis of archived raw logs can simplify forensics operations against complex attacks like identity thefts, internal bounces and malicious elements.
Since its creation, TEHTRIS has taken into account the protection of all data processed in order to ensure the security of the information systems that it is entrusted to. This is not only from the time of development but also each time the TEHTRIS XDR Platform is improved. Security and privacy by design measures are used for each step of the data processing, from the collection of data in your infrastructure to its destruction on our Appliances.
TEHTRIS applies the same principles of security and privacy by design in each of its solutions in order to protect the integrity, confidentiality and authenticity of your data.