: : :   Palette Technologies   : : :

  • admin@palettetechnologies.com

  • |     Ph: (480) 297-0813

Managed Security Services

Backed by world famous AT&T Cyber Security/AlienVault, our Managed Security Service provides a centralized security monitoring for cloud, on-premises and hybrid IT environments, including endpoint and cloud apps like office 365 and G-Suite. With multiple essential security capabilities in one unified platform, USM Anywhere simplifies and accelerates threat detection, incident response, and compliance management for today’s resource-constrained IT security teams.

USM Anywhere uses virtual sensors that run on VMware and Microsoft Hyper-V to monitor on-premises physical and virtual IT infrastructure. In the cloud, lightweight cloud sensors natively monitor Amazon Web Services and Microsoft Azure Cloud. In addition, AlienVault Agents can be deployed Windows and Linux endpoints. Security analysis and log storage are centralized in the AlienVault Secure Cloud and provides centralized security visibility of critical infrastructure.

How can we help:-

24/7/365 Monitoring Across the Security Environment Multiple PCI-DSS Compliance in One-Single Platform Dynamic Asset Discovery, Internet and Internal Facing IP Profiling
Continuous SIME Tuning and Optimization for Complete Visibility Intrusion Detection System (IDS) to Proactively Monitor Threats File Integrity Monitoring (FIM) to Identify Threats within File System
Log Management and Monitoring Continuous Vulnerability Scanning and Management PCI-DSS Compliance Reporting

Key Features and Highlights


Centralized Security Monitoring for Cloud and On-Premises Environments

USM Anywhere gives you powerful threat detection capabilities across your cloud and on-premises landscape, helping you to eliminate security blind spots and mitigate unmanaged shadow IT activities. Even as you migrate workloads and services from your data center to the cloud, you have the assurance of seamless security visibility.

USM Anywhere natively monitors –

  • AWS and Microsoft Azure public clouds
  • Windows and Linux endpoints in the cloud and on premises
  • Virtual on-premises IT on VMware / Hyper-V
  • Physical IT infrastructure in your data center
  • Other on-premises facilities (e.g., offices, retail stores, etc.)
  • Cloud applications like Office 365 and G-Suite

Automated Response Orchestration

USM Anywhere provides advanced security orchestration rules that automate actions and responses according to your needs, making your work more efficient. You can –

USM Anywhere natively monitors –

  • Reduce alarm “noise” with suppression rules
  • Generate custom alarms based on any parameter
  • Auto-respond to events with orchestration rules
  • Create orchestration rules for third-party apps


Powerful Security Analytics at Your Fingertips

When you centralize security monitoring of all your cloud and on-premises IT environments, you need a highly efficient way to search and analyze large amounts of data from across a complex and dynamically changing IT infrastructure. USM Anywhere provides an intuitive and flexible interface to search and analyze your security elated data.

With it, you can –

  • Search and analyze your data to find threats and investigate incidents
  • Pivot between assets, vulnerabilities, and event data to pinpoint the data you need
  • Create and export custom data views for compliance-ready reporting

Built Natively in the Cloud for the Cloud

Unlike other legacy security solutions that have been modified to work in the cloud, USM Anywhere is a truly cloud-native security monitoring solution that leverages the unique security elements of public cloud infrastructure. It uses direct hooks into cloud APIs to give you a richer data set, greater control over the security of your cloud infrastructure and SaaS applications, and more immediate visibility across your entire environment within minutes of installation.



Advanced Graph-based Analytics Engine

USM Anywhere takes an enhanced approach to SIEM event correlation that makes security analysis faster, more flexible, and more effective than ever. With our unique, graph-based approach to correlation,

you can –

  • Quickly and efficiently run ad-hoc queries on large and complex data sets
  • Enhance correlation by keying off connections between assets, users, and activities and the
  • changes occurring between them

Extended Security Orchestration with AlienApps™

USM Anywhere is a highly extensible platform that leverages AlienApps—integrations with third-party security and productivity tools—to extend your security orchestration capabilities. With AlienApps,

You can –

  • Extract and analyze data from third-party security applications
  • Visualize external data within USM Anywhere’s rich graphical dashboards
  • Push actions to third-party security tools based on threat data analyzed by USM Anywhere
  • Gain new security capabilities as new AlienApps are introduced into USM Anywhere

USM Anywhere currently ships with out-of-the-box integration with leading security apps, including Cisco Umbrella and Palo Alto Networks to provide data collection and action response orchestration.