Viettel Virtual SOC (vSOC)
The comprehensive 24/7/365 monitoring support service for all layers of the ICT system developed by Viettel's knowledge base.
Viettel vSOC supports comprehensive 24/7/365 monitoring of all layers in the IT system, helping to detect early and quickly handle information security incidents. The service is provided by Viettel's team of leading network security and safety experts with a clear service quality commitment (SLA).
Viettel vSOC is deployed flexibly according to the needs and scale of each organization and business with 3 main forms:
- SOC-on-Premises: Deployed directly on the customer's system, the customer will fully control the network security risk monitoring and response system, creating synchronization, comprehensiveness and efficiency.
- SOC-on-Cloud: Quickly deploy on the cloud computing platform, allowing organizations and businesses to save up to 80% of investment and operating costs, and easily expand monitoring scale.
- SOC Hybrid: Flexible combination of SOC-on-Premises and SOC-on-Cloud.
Viettel Virtual SOC's diagram
Các gói dịch vụ
| Features |
Full Package
|
Eco package
|
Lite package
|
|---|---|---|---|
| Endpoint security monitoring (server/workstation) | 24/7 | 24/7 | 24/7 |
| Network security monitoring | 24/7 | 24/7 | 24/7 |
| Application monitoring | 24/7 | 24/7 | 24/7 |
| Troubleshooting time | 24/7 | 24/7 | 8/5 |
| Complementing rule/usecase of new attack techniques | 24/7 | Weekly | Monthly |
| Optimizing rule/usecase of false positive alerts | 24/7 | Weekly | Monthly |
| Weekly security reports |
|
||
| Monthly security reports |
|
|
|
| Troubleshooting (if any) |
|
|
|
24/7 Monitor all cybersecurity vulnerabilities
vSOC provides comprehensive monitoring solutions on customers' IT systems from the application layer, Endpoint layer to the network layer and centralized management layer, operated 24/7 by leading cybersecurity experts.
Detect cybersecurity incidents & respond to incidents in a closed process
vSOC is operated based on 6 processes including: Event Management, Vulnerability Management, Incident Management, Risk Management, Problem Management, Optimization Management, helping to ensure seamless 24/7 operation, monitoring, and troubleshooting process.
Threat intelligence from leading regional and domestic carriers
vSOC’s Threat Intelligence is collected from the domestic Threat Intelligence system and from the largest network in the country and in the region, combined with other Threat Intelligence in the course of carrying out the services of SOC, pentesting, Malware cleanup and troubleshooting.
Master the technology & quick support team
vSOC is built on solutions developed by Viettel, ensuring the ability to master core technology with a team of domestic experts with support services ensured by SLA.
Các gói dịch vụ
| Features |
Full Package
|
Eco package
|
Lite package
|
|---|---|---|---|
| Endpoint security monitoring (server/workstation) | 24/7 | 24/7 | 24/7 |
| Network security monitoring | 24/7 | 24/7 | 24/7 |
| Application monitoring | 24/7 | 24/7 | 24/7 |
| Troubleshooting time | 24/7 | 24/7 | 8/5 |
| Complementing rule/usecase of new attack techniques | 24/7 | Weekly | Monthly |
| Optimizing rule/usecase of false positive alerts | 24/7 | Weekly | Monthly |
| Weekly security reports |
|
||
| Monthly security reports |
|
|
|
| Troubleshooting (if any) |
|
|
|
Monitor servers and workstation (Endpoint)
Server and computer systems will be monitored on a basis of 24/7/365 and detected malicious activities and intrusions on the Endpoint layer (workstation/server) in the customer's system.
Monitor and detect network layer attacks
Network traffic and packets will be collected and analyzed by sensors, combined with automatic malware analysis technology (Sandboxing) to automatically analyze and detect malicious activities, risks of malware and potential attacks on the network layer.
Security orchestration and automated response platform
Smart coordination platform, automation reaction, helping to integrate technologies and security processes into the system operating automatically.
Centralized log management and analysis
vSOC allows to collect, standardize, store and correlation analysis of all logs, network information security events generated in the organization's IT system and provides the ability to monitor and analyze operational data. operate in real time.
24/7 Incident response
As soon as an intrusion attack is detected, cybersecurity experts will conduct an investigation, circumscription and isolate the attacked zone from the customer's network system, then implement professional measures, check and respond across the network to rescue, handle and prevent the escalation and expansion of infection.
Provide Threat Intelligence & Cybersecurity Report
To ensure that customers are always updated and informed about the status of cybersecurity in the system as well as the world’s cyber attack trends, periodic reports will be provided in the course of using the service.
Các gói dịch vụ
| Features |
Full Package
|
Eco package
|
Lite package
|
|---|---|---|---|
| Endpoint security monitoring (server/workstation) | 24/7 | 24/7 | 24/7 |
| Network security monitoring | 24/7 | 24/7 | 24/7 |
| Application monitoring | 24/7 | 24/7 | 24/7 |
| Troubleshooting time | 24/7 | 24/7 | 8/5 |
| Complementing rule/usecase of new attack techniques | 24/7 | Weekly | Monthly |
| Optimizing rule/usecase of false positive alerts | 24/7 | Weekly | Monthly |
| Weekly security reports |
|
||
| Monthly security reports |
|
|
|
| Troubleshooting (if any) |
|
|
|
The system automatically stores customer logs for 3 months online, supporting additional log storage packages for 3 months, 6 months, 1 year depending on demand.
Each customer has its own administration interface with the full features of a separate Virtual SOC system. Customers can self-administer or Viettel IDC monitors and alerts customers 24/7.
Customers can edit reports according to their needs, reports are sent periodically daily, weekly, monthly, ... according to customer's choice, and support reports according to ISO 27001: 2022 and PCI DSS standards.
Viettel IDC's Viettel Virtual SOC service supports API integration with Google cloud, AWS, Azue to collect logs.
Need support?
Please contact Viettel IDC immediately for support and advice on the Viettel Virtual SOC solution that best suits your needs!