iPanSec.com SOAPA Dashboard
Smart InfoSec Automation Zero Trust Assurance Suite • SOAPA Dashboard Integrated with – Network Layer (PacketX , UPAS) – Field WiFi /BLE /ZigBee Layer (ArcRan iSecMaster) – Endpoint Layer (Comodo) – File/Config Layer (CimTrak) – API / 3 rd Party components Layer – VPN Jumper / HoneyPot – SIEM / SOC Tickets
Zero Trust Assurance Suit (SOAPA Dashboard) Total White Listing View SOAPA Dashboard Risk Dashboard ISAC / SOC / CSIRT Whitelist Audit Intelligent Layer Monitoring Log Analysis Behavior Layer UBA / BAD PacketX UPAS Network Layer WiFi /BLE Network Policy Enforcer Segment ACL VPN /ZigBee Zone VPN JUMP iSecMaster WiFi / BLE/ ZigBee Data Flow Monitoring Endpoint Layer Cloud API DLP Data Layer IP Port Protocol MAC Address Service Layer 3 rd Party comp. System API Framework Lib / Repo VM 2 VM Monitoring + Host Endpoint HonetPot OS Layer Process DLL Deceptor File Comodo Permission Account FIM File/ Config. CimTrak Rules Configuration Privilege Layer
iPanSec SOAPA Dashboard Module 6: InfoSec Maturity • Module 1: CMDB from InfoSec • Assessment View – ISO 27032 Module 2: Vulnerability / Threat • – NIST Cyber Security Life Cycle Management Framework Module 3: Notification Response • Ticket Flow Module 7: InfoSec Knowledge • Database – External :ISAC Ticket Flow – Code Fix – Internal – Patch Module 4: SSDLC (Secure System • – Response Develop Life cycle) – Compliance Module 5: Internal Audit & • practice Module 8: Integrate with SOC / • SIEM
SOAPA Dashboard Modules UPAS IT Assets & Configuration Management SmartIT / IP Guard/ WinMatrix Host System / Application + OCS / Ftool Agent Auto CMDB update Nessus / Rapid 7 Vulnerability / Threat Life Cycle Management Acunetix/AppScan/WebInspect Network / OS Applications / System Fortify / Checkmarx Auto Threat Impact Analysis Auto KMDB update STIX / TAXII Notification Response and Compliance Code Fix , Patch , Response KMDB ISAC CSIRT External CTI import
Smart InfoSec Automation Vulnerability(ANA) Warning(EWA) Web Defaced (DEF) ���� External Compromised(INT) Others Feedback (FBI) Internal Defense Monitor Response SOC(IPS � IDS) APT Anti-Virus Network Vulnerability Assessment Web Vulnerability Assessment Code Review On-Demand Ex � 101 ANA Vulnerability Response Flow
Why? • Each InfoSec Solution • Internal / External creates operation flow intelligence source trigger a response flow • Ex. Internal Anti-Virus, SOC , ISAC notification
SOAPA Dashboard (security operations and analytics platform architecture) Level SIEM Risk Vuln. SOAPA Dashboard Mgmt. Mgmt. � Strategy InfoSec Maturity Assessment Knowledge Database KPI/MRI tracking � � � Management InfoSec Project Control InfoSec Dashboard Less Human Workforce � � Operation InfoSec Operation Automation IT Assets Whitelisting Integrate with Threat Intelligent and ISAC https://www.csoonline.com/article/3145408/data-protection/goodbye-siem-hello-soapa.html
Dashboard KPI/MRI
Knowledge Database � Response
Success Cases
Recommend
More recommend
