Protective Monitoring

Assuria’s Forensic Log Management/SIEM solution, ALM-SIEM is designed to facilitate Cyber Security Protective Monitoring services and to assist organisations in complying with international cyber security and data protection standards such as GDPR, ISO27001 and PCI-DSS. In particular, UK Public Sector organisations can easily meet UK GPG-13 Protective Monitoring requirements using ALM-SIEM, which provides comprehensive built-in (out-of-the-box) security controls, analysis, alerting and reporting features based on GPG-13 Guidelines.

ALM is a proven, CCTM accredited GPG-13 solution, and is deployed and fully operational in UK classified projects up to the highest levels of classification, including IL5. Protective Monitoring has various meanings in IT Security terms, but it is best known as a specific term used by UK Government (also known as Good Practice Guide 13, or GPG-13) to refer to a set of recommended processes and technologies aimed at improving risk profiles and reducing Cyber Risk.

More About Protective Monitoring

Specifically, the GPG-13 Protective Monitoring Controls (also known as PMCs) define a set of control alerts and reports that provide feedback to those with responsibility for organisation risk and the performance of Protective Monitoring systems.

This includes such information security control activities as inspecting firewall logs, investigating operating system security alerts and monitoring Intrusion Detection Systems (IDS). Protective Monitoring also includes putting in place mechanisms for collecting ICT log information and configuring ICT logs in order to provide an audit trail of security relevant events of interest.

Assuria’s forensic SIEM software solution ALM-SIEM was designed from the ground up to deliver flexible, customisable and cost effective Protective Monitoring to GPG-13 Guidelines as well as other international standards, such as GDPR, ISO27001 and PCI-DSS.