The SmartEvent Software Blade turns security information into action with real-time security event correlation and management for Check Point security gateways and third-party devices. SmartEvent's unified event analysis identifies critical security events from the clutter while correlating events across all security systems. Its automated aggregation and correlation of data not only minimizes the time spent analyzing log data but also isolates and prioritizes the real security threats.
With the SmartEvent Software Blade, security teams no longer need to comb through the mass of data generated by the devices in their environment. Instead, recourses can now be deployed to focus on the threats that pose the greatest risk to their business.
SmartEvent provides several real-time views to help you quickly grasp your security situation and act based on what you see. The time line view enables you to see trends and the propagation of attacks. The charts view provides event statistics in either a pie chart or a bar graph format. The maps view allows you identify potential threats by country.
SmartEvent provides various tools to help you conduct quick event analysis. Events can be dynamically filtered, searched, sorted and grouped to quickly understand your network security status. Based on what you see, you can stop attacks straight from the event screen. Remediate attacks by adding protections on the fly. Block malicious traffic from rogue nations with Geo-Protection.
Single, unified event console
The SmartEvent Software Blade is the first and only unified event analysis and management solution that delivers actionable threat management. SmartEvent provides centralized event correlation and management for all Check Point products as well as third-party devices. The same interface enables you to deal with auditing and reporting to achieve unified compliance reporting.
The SmartEvent Software Blade interfaces with existing Security Management and Provider-1 log servers, eliminating the need to configure each device log server separately for log collection and analysis. All objects defined in Security Management or Provider-1 are automatically accessed and used by the SmartEvent server for event policy definition and enforcement.
Simple and easy to use
The SmartEvent blade provides a large number of predefined, but easily customizable, security events for quick deployment. IT security administrators can also easily create their own events using a wizard for their particular needs.
Scalable, distributed architectureProduct Highlights
The SmartEvent Software Blade delivers a flexible, scalable platform capable of managing millions of logs per day per correlation. Through its distributed architecture, the SmartEvent blade can be installed on a single server but has the flexibility to spread its processing load across multiple correlation units.
- Quickly identify security events from the deluge of device logs
- Translate security events into actionable intelligence
- Reduce business risk by responding in real-time
- Prioritize resources to address the most critical threats
- Track event resolution with built-in ticketing
- Easily install and deploy for low TCO