Home Page | Skip to Navigation | Skip to Content | Skip to Search | Skip to Footer

OPSEC Partners

TriGeo Network Security, Inc.

Product Version Certified: TriGeo Security Information Manager (SIM) v4.5
Certified for use with: Check Point NGX and Security Management R70

Product Description: TriGeo Security Information Manager is an award-winning product that combines real-time log management, event correlation and endpoint security with a unique active response technology. The result is unprecedented network visibility, security and control.

 
Key Features and Benefits
OPSEC Integration
Clear TriGeo
 

Company Description:Formed in 2001, TriGeo Network Security targets the mid-market with a network security appliance that delivers real-time log analysis, log management, event correlation and active response. With its patented real-time event correlation, automatic alerts, and policy-based active response mechanism, TriGeo provides a unique Security Information and Event Management (SIEM) solution and network defense technology that’s ideally suited to the midsize enterprise.

TriGeo has hundreds of customers across key vertical markets including financial services, healthcare, government, utility, retail and media/entertainment. TriGeo SIM has won numerous awards including the 2007 and 2008 SC Magazine Reader Trust Award, 2007 Frost & Sullivan North American Technology Innovation of the Year Award, the Bank Technology News #1 ranking in the 2008 FutureNow List, and the SC Magazine Best Buy of 2006 award for Event Management. The Company is a member of the PCI Security Standards Council and PCI Security Vendor Alliance and is represented by partners worldwide.

For additional information about TriGeo and its products, services and partners, please contact TriGeo at 1 (866) 664-9292 or at www.TriGeo.com, and visit the TriGeoSphere blog at blog.TriGeo.com.

 
Key Features and Benefits

TriGeo Network Security delivers enterprise security information and event management (SIEM) designed specifically for the needs of the midmarket. TriGeo SIM is the only real-time SIEM appliance that automatically identifies and responds to network attacks, suspicious behavior and policy violations. This award-winning product combines real-time log management, event correlation, USB detection and prevention with powerful active response technology. TriGeo SIM is both a unique network defense technology and an "Audit-Proven" compliance solution that meets the security monitoring and log management requirements imposed by PCI, GLBA, NCUA, FDIC, HIPAA, SOX and more.

Identify

  • Monitor thousands of data sources including firewalls, routers, switches, operating systems, applications and more
  • Over 650 rules analyze log data in real time for signs of network attacks, suspicious behavior and policy violations
  • Prioritize information based on critical assets or applications, time of day and specific business processes or objectives

Notiry

  • Immediately inform key personnel and stake holders of potential problems via email, cell phone or PDA
  • Customize notification messages based on event severity and the personnel required
  • Streamline regulatory compliance with nearly 300 Management, Auditor and IT reports

Respond

  • Actively respond to incidents with automated actions like Block IP, Route to Null or Disable Networking
  • Respond to insider threats or policy violations by disabling accounts, modifying privileges, or halting applications or services
  • Choose from hundreds of predefined rules or create custom rules for your unique environment

 
OPSEC Integration
TriGeo Security Information Manager uses the Check Point OPSEC LEA API to monitor Check Point firewall logs. TriGeo's integration with Check Point via OPSEC empowers Checkpoint customers with network-wide correlation of security events. When combined with our extensive repository of active response or automated remediation capabilities we're able to deliver a unique network defense technology that leverages the Check Point OPSEC SAM API to dynamically set firewall policy and block suspicious IP addresses.