Positive Technologies on the release of a new version of the MaxPatrol SIEM 5.1 software package, designed to monitor information security events and detect various incidents in real time.
The MaxPatrol SIEM platform collects data on current events and automatically detects threats, including previously unknown ones. The system helps information security services to quickly respond to an attack, conduct a detailed investigation and prevent reputational and financial damage to the organization.
In MaxPatrol SIEM version 5.1, a transition was made to the new Elasticsearch database architecture, which, according to the developers, made it possible to increase the speed of the product by more than a third.
Another innovation of the software package is a flexible model for managing user roles. If earlier it was possible to set two roles in the system - "Administrator" or "Operator", now IT administrators have the opportunity to create additional roles, granting or restricting access to certain sections of the product.
Among other features of the product are advanced intrusion detection tools, an improved user interface, as well as additional tools for analytics and information security event processing.
Detailed information about the MaxPatrol SIEM system is available for study on the website .
Source: 3dnews.ru