SolarWinds Security Event Manager - SEM

Affordable enterprise SIEM solution
From log management to active response

Insight into what is happening and awareness of the security risks (events) in your ICT environment. Immediate action (remediation) such as e.g. stopping access by malware.

Get in touch

What is SolarWinds Security Event Manager (SEM)?

SolarWinds SEM combines log management, threat detection (threads), normalization and correlation, reporting, file integrity monitoring, user activity monitoring, USB detection and prevention, threat intelligence and active response in a virtual appliance that is easy to deploy, manage and use it.

SolarWinds SEM at a glance:

  • Collects, consolidates, normalizes and visualizes logs and events from firewalls, IDS/IPS, switches, routers, servers, operating systems and other applications
  • Performs real-time correlation of data to identify threats and attack patterns
  • Automatically responds to suspicious activity with Active Response, such as blocking USB devices, closing malicious processes, and logging out users
  • Simplifies compliance reporting and audits with ready-made reports and filters for HIPAA, PCI, DSS, SOX, ISO, DISA STIGs, FISMA, FERPA, NERC CIP, GLBA, and more
  • Intuitive interface and a wide choice of ready-to-use content means you don't need to be a security or compliance expert to get value from SEM
  • Virtual appliance on-premise or cloud (VMware, Hyper-V, Nutanix, Azure)
  • Affordable, scalable licenses based on log resources (nodes), not based on log volume.

SIEM ICT Network Architecture

The features of SolarWinds SEM

Easily collect and normalize logs from network and servers to workstations

SolarWinds Security Event Manager comes with hundreds of out-of-the-box connectors to easily collect, standardize, and categorize log and event data generated across your network. SolarWinds industry-leading log file compression technology reduces the amount of disk space required to store data.

Customizable widgets and dashboard

Easily customizable widgets quickly identify important or suspicious patterns. With one click, the complete list of related logs and their details can be viewed.

Powerful and simple detection - forensic analysis and trouble shooting

Lees meer

Real-time event correlation

Lees meer

Out-of-the-Box reporting templates for security and compliance

Lees meer

'Threat intelligence feed' and groups

Lees meer

Built-in active response

Lees meer

Real-time file integrity monitoring

Lees meer

USB detection and prevention

Lees meer

Forward and export logs

Lees meer

Analysis of historical data

Lees meer

Demo SolarWinds SEM?

Detect threats in your ICT environment and demonstrate compliance. Simple, affordable and reliable.

Bedrijfsnaam

SolarWinds SEM - system requirements and license types

'Hardened' virtual appliance
SolarWinds Security Event Manager is delivered in the form of a hardened virtual appliance. This appliance can be easily installed on VMware, Hyper-V, Nutanix or Cloud infrastructure such as Azure and AWS.


The two license types of SolarWinds Security Event Manager:

1

Universal license

The basic license

2

Workstation Edition license

Licensing specifically for your desktops.

Veelgestelde vragen

What is WiFi?

WiFi is a wireless network technology that allows you to connect to other devices or the internet. The wireless connection is created by using radio waves in the 2.4GHz and 5GHz bands.

The use of WiFi is license-free. This means there are no costs associated with the use of WiFi frequencies, unlike, for example, 4G/5G.

Thanks to WiFi, you can easily connect more and more different devices with each other and/or the internet. This allows devices such as laptops, tablets, telephones (VoIP), scanners, cash registers, heating installations, cameras, alarm systems, production machines, digiboards, etc. to communicate quickly and easily.

(By the way, the term WiFi was once coined by a marketing agency.)

What is VoIP?

VoIP stands for Voice Over Internet Protocol (IP). Loosely translated, this means speech over IP (network connection). It is also known as IP telephony or Internet telephony.

In the past, telephony consisted of national cabling. The challenge was that a copper connection was required from A to B to be able to transport speech between two participants. Due to the great distances, all kinds of intermediate stations and amplifiers were needed.

At one point someone came up with the idea of ​​packing speech into very small 'samples' as data and sending that in IP 'packets' over a network connection. This allows speech to be sent over anything that supports IP, such as WiFi, Ethernet, the Internet, etc.

The big advantage is that VoIP makes use of the existing ICT network, so that one technology can transport data and speech. This means less equipment and less cabling.

In fact, cables are not always necessary, because VoIP also works wirelessly with well-designed WiFi networks (hyperlink). The old-fashioned telephone exchanges are being replaced by software on a server. Simplicity, flexibility and mobility - because it also works for WiFi - are key features of VoIP.

With VoIP, it is very important that the network is properly designed and set up for Quality of Service (QoS) so that the calls are of good quality.

What is SolarWinds Orion?

SolarWinds Orion is a monitoring system for heterogeneous ICT environments that can monitor ICT systems brand-independently.

Due to the modular design of SolarWinds Orion, it can monitor your complete ICT infrastructure. Think of the network, servers, applications, databases, storage, security and even application and network performance.

The presentation of the collected data is completely flexible and can be individually arranged in the dashboards as desired.

The SolarWinds API is so extensive that you can read all information automatically and perform actions. SolarWinds Orion can therefore be fully integrated with, for example, CMDB and provisioning systems.

SolarWinds Orion is the definition of complete outside-the-box monitoring.

How can I get more information about SolarWinds Orion modules?

Please contact our specialized SolarWinds employees for:

  • Purchase and renewals of the software
  • Independent advice (software, installation and implementation)
  • Choice in training courses
  • Support and custom scripting
  • Request demo of trials
  • More information about the modules
Which modules are covered during the SolarWinds Orion training?

Our SolarWinds Orion courses usually have the Network Performance Monitoring (NPM) or Server & Application Monitoring (SAM) module as a basis. This depends on your primary network monitoring objective.
If desired, other SolarWinds modules can be included in the training

In which languages are the SolarWinds courses given?

The training courses at Procyon Networks are given in Dutch or English. Please let us know your preference.

Where are the SolarWinds Orion trainings held?

The SolarWinds training courses are generally given in-company. If you do not have the opportunity or space for this, we will arrange a suitable location in consultation with you.

SolarWinds has its own online virtual classrooms. Why should I take a training at Procyon Networks?

Feedback from people who first followed the virtual classrooms shows that after our SolarWinds training they have a better overview, more in-depth knowledge and a better sense of context. Concepts of what is possible in SolarWinds fit in much better in relation to each other.

In addition, our SolarWinds training courses are more interactive and our training courses are more tailor-made, even during the training.

What is the SolarWinds SCP exam?

SCP stands for SolarWinds Certified Professional. This exam is administered by SolarWinds.

I want to take the SolarWinds SCP exam. How can Procyon Networks help me prepare for this?

Procyon Networks can certainly help you with your preparation for the SolarWinds SCP exam*. We have developed the SolarWinds Master training especially for this.

*SCP stands SolarWinds Certified Professional

What is WPA3 security?

WPA3 is a new and stronger security protocol for modern wireless networks (WiFi). The term stands for WiFi Protected Access.

Thanks to modern encryption methods (Simultanious Authentication of Equeals - SAE), increased security is ensured. This encryption prevents passwords for your WiFi network from being tried through with the help of word lists.

Other security functions are also mandatory, such as PMF (Protected Management Frames). This creates a more secure exchange of data during the logon phase between the client and the WiFi network (controller).

What is MU-MIMO?

WiFi 6 enables MU-MIMO. It stands for “Multi-User Multiple-Input, Multiple-Output”.

Its predecessor MIMO, which stands for “Multiple-Input, Multiple-Output”, is a technology originally introduced with the WiFi 5 standard. Thanks to MIMO, bandwidth can be split so that devices (clients) can communicate with a WiFi Access Point (AP) simultaneously.

With the MU-MIMO technology, the WiFi channels can be used even more efficiently. In addition, MU-MIMO with WiFi 6 is available in both the downlink and uplink, while with WiFi 5 Wave2, the MU-MIMO was only available in the downlink.

With WiFi 6, a total of 12 streams are available (5GHz = 8 streams, 2.4GHz = 4 streams) compared to WiFi 5 where only 8 streams on only the 5GHz band were available.

What is OFDMA?

OFDMA stands for Orthogonal Frequency Division Multiple Access. This channel access method has been available since WiFi 6 (link) and has a double advantage:

On the one hand, a channel can be divided into even more sub-channels than before. Alternatively, the distribution of one or more subchannels can be assigned to one or more clients.

If a client uses little bandwidth, the remaining bandwidth can be used for other clients. Only WiFi 6 has this channel access method.

Which WiFi equipment can I use best?

The choice of brand and type of hardware is determined by the combination of price and quality. The required quality is determined by the ICT-environment, (the number of) expected users, applications en so much more. Please contact our WiFi specialists, they will help you select the best choice.

When do I need an ICT network specialist?

Please contact Procyon Networks if you:

  • Have questions about anything related to the ICT-network field regarding current or future challenges.
  • Want to be sure that the ICT-network works well and continues to function well.
  • Want independent advice on data communication.
  • Want to offer your ICT-team the best management tools and/or have them expand their knowledge through training. 
What is code signing in for software?

With code signing, a software developer uses a certificate to certify all code as 'legitimate from this manufacturer'. So with code signing you normally know for sure that something comes from, for example, SolarWinds.

Code signing certificates must be renewed periodically. The software manufacturer normally uses this certificate for all products it releases.

Does Procyon Networks also offer online SolarWinds training courses?

Because of the depth, intensity and interactive nature of our training courses, between teacher and participants and also between participants themselves, we provide our SolarWinds training courses exclusively in class.

Are there SolarWinds Orion training courses scheduled for which I can register?

Our training courses are tailor-made for customers with a minimum of three participants (in-company). We do not provide SolarWinds training courses with an open registration.

Get in touch?

Please leave your details here and we will contact you!

Bedrijfsnaam
Created by