Next Generation Security Operation Center (NGSOC)

Focus on Security Operation, Build an Intelligent Platform

Home > Products & Technology > Next Generation Security Operation Center (NGSOC)

Introduction

QI-ANXIN’s NGSOC is a cyber-situational awareness and security operation platform based on big data. It collects massive heterogeneous data from diverse sources and uses techniques like association analysis, machine learning and threat intelligence to provide decision-making support for risk assessment and emergency response for security supervisors and offer security operation tools like threat detection, investigation and response to security operation personnel.

Features

1. Cutting-edge Big Data Architecture
NGSOC is built on a big data architecture to cope with the challenges of collecting, storing and computing tons of data. NGSOC can process hundreds of billions of data at a speed of 10W EPS to realize querying which respond within seconds, greatly improving the speed and efficiency of security analysis and response.
2. Powerful Threat Detection
NGSOC uses Sabre, a distributed association analysis engine, with 400+ association analysis rules and 100+ semantics and supporting visualization. The DGA detection technology enabled by machine learning could achieve a detection accuracy of 99.94%.
3. Perfect Closed-Loop Security Operation
NGSOC enables life-cycle management of primary security factors such as assets, vulnerabilities and other factors such as alarm and risk assessment using the closed-loop capability from threat detection, visualization, generalization to coordinated response and neutralization.
4. Professional Security Operation Service
QI-ANXIN Group’s full-time product operation service team can provide service on clients’ sites as well as analysis, operation solution consulting and training services to help clients with the problem of lacking security manpower.

Values

1. Continuous Monitoring and Awareness of Security Situation in Real Time
NGSOC helps enterprise security supervisors understand the overall security situation of their organizations quickly and in full picture, identifying security priorities to guide security and IT personnel.
2. Comprehensive and Timely Detection of Advanced Threats
Using a variety of new threat monitoring tools with the support of threat intelligence, NGSOC hunts security threats hidden in various logs faster than traditional SIEM products.
3. Respond and Neutralize by Achieving Closed-Loop Management of Threats
NGSOC provides a variety of response and neutralization methods, and notification of different hazards levels and scope of impact in three major forms including "person to person", "machine to person" and "machine to machine".
4. Early Warning and Comprehensive Dynamics Assessment
To help improve organizations abilities of coping with major cyber threat events and emergency responding, NGSOC provides threat early warning that use imported early warning packages to automatically complete the assessment of how widely an organization’s network is affected.