Cumulo is our in-house built and maintained SOC platform used to deliver our SOC Services. We've designed Cumulo around the SOC Analyst to support their work in making yours and our business more secure by delivering our 24/7 Always On detect and respond capability. Cumulo acts as a standalone Security Information and Event management (SIEM) tool, with Security Orchestration, Automation and Response (SOAR) capabalities, whilst integrating with whatever technology needs to be monitored to provide a single lens into your business and allow Analysts to have a single point of truth for investigation and incident response.
- A centralised, all-in-one, analyst-focussed cyber defence platform
- Full packet capture environment with IDS, including deep packet inspection
- Automation and orchestration capabilities
- SIEM, with log and event correlation
- Transparent and open - used by both the SOC and the customer, with full access to data