What’s new in AlienVault OSSIM v5.0?

Resources for OSSIM Users

AlienVault Forums:

https://www.alienvault.com/forums/discussions/tagged/ossim

LinkedIn Group: https://www.linkedin.com/groupInvitation?gid=3793

OSSIM On-Demand Training Webcasts:

https://www.alienvault.com/product-training

Documentation Center: Many USM resources applicable to OSSIM users

https://www.alienvault.com/documentation

AlienVault Blog – Analysis from the AlienVault Labs research team, practical

tips to secure your environment & industry trends

New features overview

Examples of how to use OSSIM

New Documentation Center

Launchpad training

USM for AWS

OTX 2.0 Beta

AGENDA

New OSSIM v5.0 Features

Summary of Features in v5.0

Asset Oriented Security

Backup and Restore

Rapid Response Message Center

Asset-Oriented Security

Simplified user interface,

views, and workflows

Customize workflows to

match how you want to

protect your network

Easier to get results on the

first day of install

Create / Manage Groups More Easily

Create groups by selecting

any number of assets from

the asset list

Manage group membership

and group details from the

asset and group levels

Enhanced Asset Details

Centralized view of

vulnerabilities, alarms, and

other security events in

the same view

Manage security controls

at the asset level

Add custom labels for

device attributes

Leveraging Asset Groups

Gain insight about threats

targeting the network and

compliance status

Aggregate view of all

vulnerability, alarm and

event data for assets in

group

Enable security controls for

all assets in the group

Rapid Response Message Center

Centralized delivery of all

in-system messages,

errors, warnings

View all security

advisories, documentation

updates and release

notes

Increases awareness of

system status and

changes to threat

landscape

Backup and Restore

Users can backup and restore system configurations including:

• System profile

• Networking

• Inventory data

• Policies

• Plugins

• Correlation directives

• Other basic configuration settings

Backups run automatically each day.

Other Announcements

Launchpad Training – 1 day course

New 1-day course provides an orientation to AlienVault and will cover the following topics:

• Basic architecture of AlienVault USM and how it helps to protect your organization

• How to detect and respond to threats

• How to ensure that the system is operating properly and how to work with assets

• Working with policies to filter unnecessary events and false positives.

• How to turn the data that's coming from the system into valuable information and action

New Documentation Center

New Documentation Center includes:

Google-powered search

Simple layout via a table of contents

Public availability of knowledge base articles

AlienVault look and feel

Easy export of documentation to PDF for offline access

Access to knowledge base articles by AlienVault Support

A direct link to documentation supporting USM for AWS

www.alienvault.com/documentation

USM for AWS

USM for AWS gives you visibility into:

The state of your AWS infrastructure

Assets in your environment

Assets that are misconfigured or vulnerable to exploits

Who is using your resources and how they are using them

Malicious activity targeting your environment

OTX 2.0 Beta – Sign up!

Joining the beta will enable you to:

Collaborate with researchers and security practitioners

Get access to threat intelligence and data

Automatically export IOC’s into your security tools

Strengthen your defenses and help others do the same

https://www.alienvault.com/open-threat-exchange/otx-beta

OSSIM vs. USM

How is USM different?

Correlation Directives: Over 2,000 built-in correlation directives developed by the AlienVault Labs Threat Research Team, and updated weekly

Reporting: 150+ Customizable Reports, including compliance-specific reports

Log Management: Robust Log Management, Log Search & Long-Term Log Retention

Database Performance: Enhanced storage capacity & performance optimization

Professional Support via phone & email as well as customer support portal

And more…view comparison chart here: https://www.alienvault.com/products/compare-ossim-to-alienvault-usm

“I started out with OSSIM and I didn’t fully realize how much value I would get out of USM until I started using it.

The reporting is awesome, it’s been a big benefit for me. And, having a fully supported solution means I can get

answers to my questions much more quickly than before.”

– Matthew Frederickson, Director of Information Technology, Council Rock School District

USM + Free Installation Services

http://www.alienvault.com/marketing/smb-bundles

888.613.6023

ALIENVAULT.COM

CONTACT US

HELLO@ALIENVAULT.COM

Questions?

Resources for OSSIM Users

OSSIM vs. USM Comparison Charthttps://www.alienvault.com/products/compare-ossim-to-alienvault-usm

AlienVault Forumhttps://www.alienvault.com/forums/discussions/tagged/ossim

LinkedIn Grouphttps://www.linkedin.com/groupInvitation?gid=3793

Subscribe to the AlienVault Bloghttps://www.alienvault.com/blogs

Launchpad Training Classeshttps://www.alienvault.com/support/launchpad