Security Monitoring

We view your business with your data as premises that need to be protected from attacks that come from outside in, but also from inside out. Our security monitoring service does this proactively by creating use cases that “go off” when a threat occurs. We categorize this threat within the team. Then we agree with the customer what to do.

Protecting your data basically starts with monitoring your network activities. In short, it comes down to connecting your log sources with our SOC (Security Operation Center). Log sources can be of various kinds such as IDS, Firewall, antivirus, G360, endpoint detection, Microsoft365 and Windows event logs. Combined with an endpoint and vulnerability security solution, we build the most complete solution possible to monitor and alert your data. With these 3 categories, we optimize our MDR service.

Our working method

NFIR offers a complete service. This means that we work with you from multiple disciplines from the intake. During the implementation phase, a team is assembled consisting of a business consultant, a security engineer and a project manager. This team will be in constant communication with you. Together with this team, you determine what the “use cases” – aka security rules – are that the alerts go off on. The final solution provided by NFIR is a 100% automated solution to monitor your network activities. You will receive critical notifications immediately via email or text message and can take action on them yourself. However, our service is set up so that we managed do. That means we don’t overload you with monitor data that makes you lose sight of the forest for the trees. On the contrary, we only alarm you when necessary. As the service gradually runs within your organization, a service manager will also become a member of the team. After completion, he or she will go through all the reports with you every month. Based on this, the service manager will indicate how this process can be optimized.

Intrusion Detection and Vulnerability Scans

If desired, our Security Monitoring In addition, we can also relieve you of your worries when interpreting (more complex) reports. If things really go wrong, we can support you at any location with our Incident Response teams

Who do we offer Security Monitoring to?

NFIR’s vision on security monitoring is that this service should no longer be reserved for the largest companies in the Netherlands with a lot of security knowledge. For this reason, NFIR’s security monitoring service offers a very affordable and easy to interpret solution for SMEs (companies with 50 to 500 employees).

Security monitoring

Security Information and Event Management (SIEM) and Security Operation Center (SOC) incorporated into a complete Security Monitoring service. A fully automated solution where your organization no longer needs to interpret data and is completely unburdened.

Security monitoring involves monitoring network traffic and analysing log files in order to detect threats, vulnerabilities and cyber attacks at an early stage. NFIR offers a fully automated solution, so that you no longer need to interpret data yourself. Via a dashboard you can view all notifications and take action if necessary.

NFIR Insights, our security monitoring service, analyses all data from the connected detection sources and displays that processed data in an easy to interpret dashboard environment. NFIR’s security monitoring specialists automatically process the log data received on the basis of use cases, which are determined together with the customer. When monitoring network traffic, all information, including reports of suspicious activity, ends up in a dashboard. This way you are quickly informed of activities on your network and you can intervene adequately in case of suspicious activities.

Monitoring your network can help detect malicious behaviour early on. If you want to protect your network, it is best to start monitoring your network. You gain insight into your network, you are quickly informed of suspicious activities and you can take appropriate action if a suspicious situation arises.

NFIR’s security monitoring specialists are working on the development of the Insights platform every week. They process the information from devices in your network and analyze it using machine learning and proven detection rules.

Various detection sources can be connected to NFIR Insights. You can think of IDS sensors, firewall logs, vulnerabilitiy scanners (external/internal), endpoint solutions and the like.

NFIR Insights, our security monitoring service, analyses all data from the connected detection sources and displays that processed data in an easy to interpret dashboard environment. NFIR’s security monitoring specialists automatically process the log data received on the basis of use cases, which are determined together with the customer. When monitoring network traffic, all information, including reports of suspicious activity, ends up in a dashboard. This way you are quickly informed of activities on your network and you can intervene adequately in case of suspicious activities.

NFIR offers a scalable, manageable and affordable solution with its Security Information and Event Management (SIEM) and the implementation of a Security Operation Centre (SOC). We offer our SIEM as a fully automated solution, where you no longer have to interpret data yourself. The outputs are reports that your IT department can take action on. Read how we take the worry out of your life and what results you will achieve when implementing our SIEM and SOC solution.

Scroll to Top