Al Maria Middle East Technologies Relationship with IBM.

Al Maria Middle East Technologies is an Authorized IBM Partner in Abu Dhabi and in entire UAE. Dealing in a wide range of product line, offering a complete IT solution for SMB and Enterprise Level Organizations.

almaria-ibm-authorized
 

IBM QRadar Security Intelligence Platform products deliver:

 

  • A single architecture for analyzing log, flow, vulnerability, user and asset data.
  • Near real-time correlation and behavioral anomaly detection to identify high-risk threats.
  • High-priority incident detection among billions of data points.
  • Full visibility into network, application and user activity.
  • Automated regulatory compliance with collection, correlation and reporting capabilities.

 

 

SIEM

seim-icon IBM® Security QRadar® SIEM consolidates log source event data from thousands of devices endpoints and applications distributed throughout a network. It performs immediate normalization and correlation activities on raw data to distinguish real threats from false positives. As an option, this software incorporates IBM Security X-Force® Threat Intelligence which supplies a list of potentially malicious IP addresses including malware hosts, spam sources and other threats. IBM Security QRadar SIEM can also correlate system vulnerabilities with event and network data, helping to prioritize security incidents.
 

Incident Forensics

incident-forensics-icon

IBM® Security QRadar® Incident Forensics allows you to retrace the step-by-step actions of a potential attacker, and quickly and easily conduct an in-depth forensics investigation of suspected malicious network security incidents. It reduces the time it takes security teams to investigate offense records, in many cases from days to hours—or even minutes. It can also help you remediate a network security breach and prevent it from happening again. IBM Security QRadar Incident Forensics offers an optional IBM Security QRadar Packet Capture appliance to store and manage data used by IBM Security QRadar Incident Forensics if no other network packet capture (PCAP) device is deployed. Any number of these appliances can be installed as a tap on a network or sub-network to collect the raw packet data

 

Risk Manager

risk-manager-icon

Automated risk management for monitoring network device configurations and compliance IBM® Security QRadar® Risk Manager monitors network topology, switch, router, firewall and Intrusion Prevention System (IPS) configurations to reduce risk and increase compliance. It simulates network attacks and models configuration changes to assess their security impact. IBM Security QRadar Risk Manager integrates with IBM Security QRadar SIEM to obtain event, context and flow data. It can correlate vulnerability data—including information from IBM Security QRadar Vulnerability Manager—with network topology and connection data to prioritize application vulnerabilities and intelligently manage and reduce risk. A policy engine automates compliance checks, enabling risk dashboards and historical compliance reports.

 

Vulnerability Manager

vulnerability-manager-icon

IBM® Security QRadar® Vulnerability Manager proactively discovers network device and application security vulnerabilities, adds context and supports the prioritization of remediation and mitigation activities. It is fully integrated with the IBM QRadar Security Intelligence Platform, and enriches the results of both scheduled and dynamic vulnerability scans with network asset information, security configurations, flow data, logs and threat intelligence to manage vulnerabilities and achieve compliance. IBM Security QRadar Vulnerability Manager helps you develop an optimized plan for addressing security exposures. Unlike stand-alone tools, the solution integrates vulnerability information to help security teams gain the visibility they need to work more efficiently and reduce costs. IBM Security QRadar Vulnerability Manager is part of the IBM Security QRadar SIEM architecture. It can be quickly activated with a licensing key and requires no new hardware or software appliances.