Do you want to switch the language?

Blue Team Deepdive

Cyber Defense Center

The CANCOM Cyber Defense Center reacts quickly to attacks and helps to initiate efficient countermeasures. The service has a modular structure and can be deployed flexibly according to customer requirements using individual modules (NSM, EDR, LOG, etc.). Behind the modules, threat intelligence information is compared with the existing data of the modules and analyzed.

Over 60 analysts work 24/7/365, distributed over 4 locations in the D-A-CH region to protect our customers from cyber attacks in the best possible way.

The CANCOM Managed SOC Service increases the visibility of your infrastructure and covers all network elements: devices, applications, data and, of course, users. The CDC recognizes attackers, identifies compromised systems and helps to respond to these attacks with the right means. The CANCOM Cyber Defense Center relies on the connection between man and machine; an efficient combination of analytical thinking, the experience and know-how of CANCOM cyber security analysts and the support of various technologies.

incidents

The main areas of a

CANCOM cdc logo black

Technology

Use of market-leading technologies and partners for continuous service from the Cyber Defense Center as well as regular fine-tuning of the sensors and comparison with various threat feed databases.

Processes

We don't impose a "standardized approach" on our customers, but instead respond to each one individually. Our experience from over 8 years of market presence, including our heterogeneous customer structure, gives us a 360-degree view of the attack world and allows us to establish highly efficient processes, such as senior analysts with customer responsibility, dedicated service managers and monthly report meetings.

People

"Where a man attacks, a man should defend!" This is the motto by which we design and live our service. Accordingly, our colleagues from the Cyber Defense Center are our top priority. Although we have various supporting systems in place, each of our reported tickets is created manually by an analyst, which also includes recommendations for action tailored to the customer.

Our modular structure

modularer aufbau

In order to offer our customers the best possible protection across the entire kill chain, our service has a modular and flexible structure. This is because not every potential customer has the same requirements and circumstances.

out

Network Security Monitoring

  • Recording of network traffic
  • Automated and manual analysis
  • Anomaly detection
  • Network forensics
through

Log - Analysis

  • SIEM
  • Log aggregation and analysis
  • Statistical analysis
  • Data correlation
in-out

Threat Intelligence

  • Threat Landscape
  • Threat Actor & Campaign Tracking
  • Brand & Credential Monitoring
in-trough-out-2762x1796

Endpoint Detection & Response

  • Endpoint Visibility
  • Live Remote Analysis
  • Remote Data Collection
  • Endpoint Isolation
in

Vulnerability Management

  • Asset Discovery
  • Vulnerability reporting
  • Proactive tracking
  • Enrichment through threat intelligence
in-665x665

Operational Technology Monitoring

  • Specialization in OT devices and protocols
  • Continuous monitoring
  • Overview of assets and communication flows
  • Detection of attacks and vulnerabilities

Benefit from our customer dashboard and customized solutions

  1. Central overview of all key indicators and events
  2. IT and OT in one overview
  3. API interface
  4. Role-based concept
  5. Predictable costs
  6. Personal contact and discretion in the event of verified incidents are particularly important to us.
  7. Immediate alerting via multiple channels

Red Team Deepdive

Read more

Purple Team

Read more

Information Security Management

Read more

OT Security

Read more

IT Security

Read more

Contact
CANCOM Austria

Daniel Firulovic, MA

Director Business Development Security

CANCOM Austria AG
Wienerbergstraße 53, 1120 Wien, Österreich

+43 664 628 5626daniel.firulovic@cancom.com

Request now

How may I help you?