Oct 21, 2015

Integrate with that SIEM

NormShield on-premises is a Unified Vulnerability Management (UVM) tool that helps companies to manage their technical vulnerabilities which is a very complex task in our scarce ITSec professional existing world.

Since the SOCs are popular and important to corporate security, one of the slick features that NormShield UVM has is the ability to deferentially communicate new vulnerabilities to popular SIEM tools or syslog as the basic technology.

NSHotpoint is used to configure specific NormShield agents to communicate through the generic syslog servers with multiple data formats; Archsight, Splunk in CEF or Non-CEF with different RFC versions and protocols.

A simple configuration video can also be watched here: https://youtu.be/iq_SMMCIyxk?t=180