We offer different services ;
Managed detection response (VISION) : our Swiss-made security monitoring solution that aims at helping you identify and remove those IT security threats while leveraging your existing security solutions
Consulting for Cybersecurity monitoring : Splunk and Sentinel
We do not pretend to make you hack-proof but our solution will definitely help you reduce your risk exposure and comply with laws and regulations through improved diligence
We will start by looking at your existing logs and security devices and we will decide together :
- where to setup our sensors
- how many sensors you need
- what (interesting) existing logs you already have
- type of alerts you want
- content of reports
- Volume of logs (EPS)
- Number of sensors
- SLA/Alerting (8×5 or 24×7)
There will be a one-time setup fee (CAPEX) + a flat-commitment yearly fee (OPEX) including everything (managed service, maintenance, alerts, updates, reports…)
Please contact us for a quote
Our collectors can read : syslog, flat-files, email,…
This includes, among others :
- Operating systems : Windows, Linux, Sun,..
- Security devices : Firewall, Proxies, Sandboxing solutions, IPS,…
- Endpoint solutions : Antivirus, HIPS
- Network equipments : Switches, routers,..
- our custom tailored SIEM
- Microsoft Sentinel
Our sensors are :
- Collecting logs
- Monitoring your network trafic (through a port span or tap)
- Listening to specific network requests
Our datacenter and office are in Switzerland (Lausanne Region) + Luxembourg
Your data will stay in Switzerland or Luxembourg
Feel free to contact us if you would like to pay us a visit.
Contrary to other SOC vendors, we do not need all your logs.
This is however something we can propose (if you need to outsource/export your logs for compliance reason).
Our sensors will filter the logs that can be interesting to identify a security breach.
YES : we could be used as SIEM (if you want to send us all your logs)
NO : However, we are much more than just a SIEM, we are a full managed service, we can work in conjunction with your existing SIEM.
See our CSIRT incidence response team
NEED IMMEDIATE ASSISTANCE?
+41 21 519 05 01 (Switzerland)
+352 20 30 15 86 (Luxembourg)
We’re here to answer your questions during regular business hours.
Technical support service levels will vary depending on your service plan. Please contact your Hacknowledge representative for further details or feel free to call us during regular business hours or send us an e-mail.