Please share documents on SOC 24x7 Security Monitoring thorugh RSA envision.
How to monitor? what to Monitor, Incident Management? Incident Handelling by Security Analyst flow chat?
Please check the documents attached, I wasn't sure if you were looking for technical documentation on how to implement SOC functions with enVision or just some guidance on how enVision can help, anyway I hope this helps.
Thank you for your reply.
I am looking for detailed procedure for security analyst to do monitoring with enVision.
For example –
1- Where you can see the entire incident,
2- What to do when you found some suspicious event
3- How to verify if the event is suspicious
4- How to escalate the event to client or to network / system team for remediation.
5- Complete incident management
If you have video training or documentation, kindly share it. Thank you in advance.
The only public videos that I'm aware of are on these links:
The first link contains a collection of Web Seminars on demand of the various products that RSA offer (including envision), in the second link you'll find a recording of the enVision weekly webcast where they usually explain a few use cases and how to implement them inside the enVision.
Also you could use the administrator guide that is available on the Secure Care Online
Retrieving data ...