Menu Content/Inhalt
Home arrow Consulting arrow Situational Awareness
Situational Awareness Security Architecture and Integration
The keys to maintaining problem-free and secure business systems, as well as maintaining the ability to quickly isolate and fix faults, are documentation, planning, preliminary testing (where possible), implementation, communication and verification under the guidelines of the best-practices for the involved business assets. This requires a framework of procedures and personnel to be in place to support and facilitate event management.  True situational awareness requires an intimate understanding of cyber, physical and operational events of normal and abnormal behavior.  
Sample Image
Figure 1. Situational Awareness Information Sources
 
Well defined change management practices are paramount for security event management.  Nearly the first question asked in any event is, "What changed?".  Next, if the change(s) can be identified then were they approved and by whom? 
 
Sph3r3 recognizes the challenges in developing a truly business integrated security event management system.  A system is not successful unless truly integrated with the business practice, job functions, and physical security.  This is where previous solutions have failed - SQL slammer is attacking; however what specific impact(s) does this have on the business?  A new hire in HR has downloaded over 100 corporate employee records - is this normal or anomalous activity?  Our security event management integrated solution will work with your team to identify the business processes to electronically profile and monitor.  This strategy provides true business-sense to your electronic information and control.
 
Download Sph3r3's Free Situational Awareness Presentation

Situational awareness is an innate understanding of normal and abnormal behaviors within and outside of your organization.  Today's world requires an unprecendented understanding of events and the capability to appropriately respond.  You must now assume that the adversary has a better external understanding of your environment - it is your requirement to leverage resources to counter this and understand above and beyond your and your surroundings.  This may be a costly endeavor - but one that should also turn your information security initiatives in to a profit center.  Please review Sph3r3's Situational Awareness presentation and contact us at your convenience for questions and answers.  This is an industrial first to flip our internal initiatives to a profitable perspective from many angles - therefore, it is expected that you will have many questions.