Symantec Security Information Manager Monitored Workstation (v. 4.7) - license + 1 Year Essential Support

Symantec Security Information Manager enables organizations to collect, store, and analyze log data as well as monitor and respond to security events to meet IT risk and compliance requirements. It can collect and normalize a broad scope of event data and correlate the impact of incidents based on the criticality to business operations or level of compliance to various mandates. Incidents are prioritized using its built-in asset management function, which is populated using scanning tools and allows confidentiality, integrity, and response ratings and policies to be assigned to help prioritize incidents.

In addition to establishing priority to events, Symantec Security Information Manager can provide recommended best practices for response and remediation efforts. Automated updates from Symantec's Global Intelligence Network provide real time information to the correlation process on the latest vulnerabilities and threats that are occurring across the rest of the world.

Symantec Security Information Manager can enable organizations to produce executive, technical, and audit-level reports that are highly effective at communicating risk levels and the security posture of the organization. Over 300 out-of-the-box queries can create custom reports via Symantec Security Information Manager. Real-time correlation of network and host security breaches with Symantec's trusted global security intelligence makes it the vehicle for a world-class incident response system promoting the integrity of business-critical information assets. Security Information Manager can deliver a framework that automates the real-time collection, monitoring and assessment of audit mechanisms and security controls and can dramatically lower costs and improve the effectiveness of managing activities related to IT security and compliance risks.