MARCH 2014
What’s New in AlienVault USM v4.5?USM Customer Webinar
AGENDA
Feature Overview
Examples of how to use USM
New Health Check Service Offering
Questions
New v4.5 Features
SUMMARY OF NEW FEATURESNew Look and Feel New Plugin
Suggestion EngineNew Errors and
Warnings Dashboard
First Time Wizard Improvement
New Status Monitors Alarm Tag Forwarding
NEW LOOK AND FEEL
Feature Summary:
Color, layout, and style improvements
Common library of UI elements (buttons, tables, interaction, workflow)
Value to You:
More intuitive, consistent, and easy to use
Predictable, consistent interaction and workflow
Reduced learning curve, increased time to value – “results in day one”
PLUGIN SUGGESTION ENGINE
Feature Summary:
Identify assets sending data but with no plugin enabled
Identify assets not sending data and with no plugin enabled
Offer suggestions and built-in workflow to enable the proper plugin
Value to You:
More easily identify assets with no data collection and help the user easily enable the right plugin
Increase time to value when configuring new assets.
NEW WARNINGS & ERRORS DASHBOARD
Feature Summary:
Warn administrators of conditions that require attention
Provide suggestions on how to resolve the error or warning
Value to You:
Self-monitoring to prevent system failure
Proactive notification
FIRST TIME WIZARD IMPROVEMENT
Feature Summary:
Separated the Log Management step into two separate pages
Provide better clarity about each asset, plugin selected, and if AlienVault is receiving data.
Value to You:
Make the log management section more intuitive and easy to use.
Provide better information to tell the user if AlienVault is collecting data or not.
NEW STATUS MONITORS
Feature Summary:
Built-in monitors to assess the system for failure conditions
Monitors Available:
The Asset is not sending any log to the system Asset is sending log to the system, but there isn't a plugin enabled to parse the logs The Asset was successfully sending logs to the system, but no log received within the
last 24 hours The System is dropping packets, overloaded The System is dropping packets, malformed network packets The System Disk space is under 25% The System Disk space is under 10%
ALARM TAG FORWARDING
Feature Summary:
Alarms sent from a child server in a federated environment are tagged to uniquely identify the source
Customer Value:
Better support in MSSP, federated environments
Allow users to more easily discern what child server an alarm was generated on
Use USM to Answer Simple Questions
Is one of your system administrators running a bittorrent in the data center?
What known malicious hosts are your systems talking to?
Which of my vulnerable assets are under attack?
Introducing…
USM Health Check Service
Let us help you tune your AlienVault USM deployment so you can maximize the value of your investment.
USM Health Check Service
Validate that USM components are performing optimally and within specificationAssess directives, policies, and alarms to get you results you are expecting
Provide guidance on how to most effectively utilize USM to get results.
Deliver a comprehensive findings report to drive correction and improvements.
$2000
This Service Is For …Who have …
A single All-in-One [25A, 50A, 75A, 150A, or Standard]
A Standard USM Server, Standard Sensor and Standard Logger combination
A Standard USM Server or All-in-One with up to 5 remote sensors
Other Options Available
Existing
s
A Certified AlienVault Consultant will …
Spend one day (8 hours) to evaluate your deployment Services performed remotelyEvaluate …Operating system configuration and health• Query performance and indexing response times• USM content memory utilization• Sizing, capacity, and growth metrics• Data collection and plugin health• Policies to determine false positives and optimization
optionsReport delivered at the end of the engagement to provide …• Investigation results• Any remediations done during the engagement• Recommendations
Contact [email protected]
Interested?
Top Related