Skip to main content

SGBox Next Generation SIEM

What is SGBox?

SGBox is a modular platform for controlling and managing ICT security. Its modular and distributed architecture means it can adapt to various company needs. With SGBox, you can create an aggregate display with all the information gathered from log collection, vulnerability scan, and endpoint status. The collected information feeds a correlation engine and analytics system to provide a full network security posture and adopt automatic responses against cybersecurity threats. SGBox SIEM is offered as on-premise or cloud installation; single or multi-tenant version.

Log Management

Collect and analyze any data from any kind of device.

Event Correlation

Define correlation rules to detect anomalous patterns and scenarios.

Vulnerability Assessment

Vulnerability scans over the network to find vulnerabilities and misconfigurations.

System Monitoring

Continuous monitoring to check assets resources and services availability.

User Behavior Analytics

Determine the risk profiles of users inside your network.

Endpoint Threat Detection

Monitor activity across all endpoints providing deep visibility into their security state.

Simple and Intuitive Interface

Log Management

Log Management

More than a log repository

Log Correlation Engine

Log Correlation Engine

Correlation, alert and automated response

Network Vulnerability Scanner

Network Vulnerability Scanner

Scan, auditing and compliance

System Monitoring

System Monitoring

Deeper Visibility on connected devices

User Behavior Analytics

User Behavior Analytics

Monitor user behavior to discover compromised identites

Endpoint Threat Detection

Endpoint Threat Detection

Detecting attacks on Microsoft Systems

: