https://kb.solcyber.com/solcyber-customer-experience/Recent content in SolCyber Customer Experience on SolCyber KnowledgebaseHugoenhttps://kb.solcyber.com/solcyber-customer-experience/solcyber-service-features/Mon, 01 Jan 0001 00:00:00 +0000https://kb.solcyber.com/solcyber-customer-experience/solcyber-service-features/<figure><img src="https://kb.solcyber.com/assets/SOL_ServiceFeatures.jpg" alt=""><figcaption></figcaption></figure> <h2 id="advanced-email-protectionx20">Advanced Email Protection <a class="anchor" href="#advanced-email-protectionx20">#</a></h2> <p>Proactive blocking of malicious emails including SPAM, Phishing and BEC </p> <ul> <li>Assist in integration with mail platform </li> <li>Migration and maintenance of white list and black lists </li> <li>Monitoring of high risk users against BEC </li> <li>SOC triage on quarantine release to reduce risk </li> </ul> <h2 id="endpoint-detection-and-responsex20">Endpoint Detection and Response <a class="anchor" href="#endpoint-detection-and-responsex20">#</a></h2> <p>Prevention, detection and response capabilities at the endpoint. </p> <ul> <li>Remote assist in roll out of agent and associated troubleshooting</li> <li>Management of security policies including enabling blocking mode </li> <li>Detection, mitigation and quarantining of malware and behavioral detections.</li> <li>Collect detailed telemetry used in alert triage and incident investigations: <ul> <li>ex. network connections, registry modifications, file creation and modification, DNS requests, processes, etc</li> </ul> </li> <li>Ability to network quarantine devices, when necessary</li> <li>Remote command line access for containment and additional triage</li> </ul> <h2 id="phishing-simulation-and-trainingx20">Phishing Simulation and Training <a class="anchor" href="#phishing-simulation-and-trainingx20">#</a></h2> <p>Harden your weakest link, your employees. Service is designed to be practical so users actually learn and don’t treat it as another compliance exercise. </p>https://kb.solcyber.com/solcyber-customer-experience/roles-and-responsibilities/Mon, 01 Jan 0001 00:00:00 +0000https://kb.solcyber.com/solcyber-customer-experience/roles-and-responsibilities/<h2 id="where-solcyber-helpsx20">Where SolCyber Helps <a class="anchor" href="#where-solcyber-helpsx20">#</a></h2> <ul> <li>Detect and respond to threats against the traditional IT infrastructure </li> <li>Visibility into security posture and continuous advice on how to improve your overtime </li> <li>Ensure all the bundled tools are working optimally and constantly adjusted based off threats </li> <li>Evaluate the performance of all tools regularly and update as needed based off changes in technology and threats </li> <li>Answer questions and provide advice around security best practices </li> <li>Support compliance efforts with included controls and communicate to auditors where needed </li> </ul> <h2 id="where-to-focus-your-resourcesx20">Where to Focus Your Resources <a class="anchor" href="#where-to-focus-your-resourcesx20">#</a></h2> <ul> <li>Own security strategy and augment SolCyber’s capabilities </li> <li>Coordinate response with our analysts when needed </li> <li>Security architecture such as zero trust implementation </li> <li>Personalized security: </li> <li>Application security / Devsecops </li> <li>Anti fraud </li> <li>Supply chain risk </li> <li>Insider risk </li> <li>Compliance and other regulations </li> </ul>https://kb.solcyber.com/solcyber-customer-experience/master/Mon, 01 Jan 0001 00:00:00 +0000https://kb.solcyber.com/solcyber-customer-experience/master/<figure><img src="https://kb.solcyber.com/assets/SOL_OnboardingGuide.jpg" alt=""><figcaption></figcaption></figure> <h2 id="intro">Intro<a class="anchor" href="#intro">#</a></h2> <p>This document serves as a high-level guide to help customers understand the SolCyber onboarding process.</p> <h2 id="objectives">Objectives<a class="anchor" href="#objectives">#</a></h2> <ol> <li>Transition security operations to SolCyber​.</li> <li>Get to know your team​.</li> <li>Establish roles and responsibilities​.</li> <li>Understand the process and timelines.</li> </ol> <h2 id="key-stakeholders">Key Stakeholders<a class="anchor" href="#key-stakeholders">#</a></h2> <table> <thead> <tr> <th>Role</th> <th>Customer/SolCyber</th> <th>Main Responsibility</th> </tr> </thead> <tbody> <tr> <td>Customer Success​</td> <td>SolCyber​</td> <td>Ensure success of onboarding and point of contact for all non-security related queries​</td> </tr> <tr> <td>Lead Analyst</td> <td>SolCyber</td> <td>Primary security contact​</td> </tr> <tr> <td>Project Lead</td> <td>Customer</td> <td>Lead contact for on-boarding to help coordinate between the different parties​</td> </tr> <tr> <td>Security Lead</td> <td>Customer</td> <td>Lead contact to work with the SolCyber SOC​</td> </tr> <tr> <td>Email Admin</td> <td>Customer</td> <td>Assist with deployment of Advanced Email Protection​</td> </tr> <tr> <td>IT Desktop Admin</td> <td>Customer</td> <td>Assist with deployment of Endpoint Persistence Agent​</td> </tr> <tr> <td>Network Admin</td> <td>Customer</td> <td>Assist with deployment of Lateral Movement Detection node​</td> </tr> </tbody> </table> <h2 id="key-milestones-and-timeline">Key Milestones and Timeline<a class="anchor" href="#key-milestones-and-timeline">#</a></h2> <p><img src="https://kb.solcyber.com/assets/image%20%2888%29.png" alt="" /></p>https://kb.solcyber.com/solcyber-customer-experience/supported-product-list/Mon, 01 Jan 0001 00:00:00 +0000https://kb.solcyber.com/solcyber-customer-experience/supported-product-list/<figure><img src="https://kb.solcyber.com/assets/SOL_ProductsPlatforms.jpg" alt=""><figcaption></figcaption></figure> <p>In general, the SolCyber foundational technology stack supports the following:</p> <p><strong>Operating Systems</strong></p> <ul> <li>Windows 10/11</li> <li>Windows Server 2012/2016/2019</li> <li>MacOS Catalina/Big Sur/Monterey</li> <li>Linux (most distros)</li> <li>Limited Support for Windows 7/8</li> </ul> <p><strong>Email Platforms</strong></p> <ul> <li>Microsoft Exchange/Office 365</li> <li>Google Workspace</li> </ul> <h2 id="data-ingestion">Data Ingestion<a class="anchor" href="#data-ingestion">#</a></h2> <p>SolCyber SOC Platform supports the ingestion of telemetry data from the following platforms. Please work with your Customer Success representative to onboard additional sources or contact sales to purchase additional EPS buckets.</p>https://kb.solcyber.com/solcyber-customer-experience/recommended-logs/Mon, 01 Jan 0001 00:00:00 +0000https://kb.solcyber.com/solcyber-customer-experience/recommended-logs/<p>Securonix is a powerful platform that enables our analysts to detect and triage incidents. It can collect data from a host of technologies to enable our SOC to:</p> <ul> <li>Provide additional context for a primary indicator </li> <li>Enable unique detection of threats </li> </ul> <p>We’re solely focused on providing better security so we recommend only sending us logs that provide <strong>high security value</strong>. If you have logs that you want to setup specific alerts for, that works as well. Here’s what we recommend sending over and why. </p>