Let's find
a solution that
fits your needs
Contact us to see how we can help
with a no cost initial consultation.
Request a Quote
e: sales[email protected]
p: 919.595.8560

Edge

Professional Services and Consulting

Edge

Professional Services and Consulting

Do you have a custom application or system not currently supported by your platform, but you need to capture those logs for correlation, reporting, and compliance? Our team can build plugins and playbooks to integrate these and other data sources into your system so that you can get real value from them.

What about other IT infrastructure, like a 3rd party ticketing system or a business analytics tool? Do you need to link in your security platform to make sure the right people get the right data to protect your network? We can orchestrate that, and we’ve done it successfully many times with a variety of well-known tools on the market.

Want to take your security responses to the next level by triggering automatic blocks, data forensics captures, network traffic recording, or other actions? Our security-savvy development staff can build the automation and orchestrate systems that, until now, required your team to manually hop between them and respond.

With Castra Consulting, we work alongside you on your project. Whether you are implementing a SIEM for the first time, you are busy with Intrusion Detection, or knee deep in the abyss of Compliance reporting, Castra is here to help. Castra Consulting will provide trusted expert insight, shortening the duration of your project and increasing the likelihood of success.

Edge can range from:

  • Implementing a platform (SIEM or Logging Solution)
  • Platform Health Checks (Am I doing this right?)
  • Custom integrations / Custom Orchestrations / plugins
  • Tuning a SIEM, IDS, other
  • Temporary Trusted Advisor initiatives
  • Virtual CISO
  • Understanding Vulnerability Scan reports
  • Pen Testing
  • Incident Response
  • Literally just providing answers to your questions!

Custom Integrations

If it has an API, we can make it work If it doesn't have an API we can likely make it work

Custom Threat Feed Integration

Remote system integrations

  • Footprints
  • JIRA
  • Service Now
  • Remedy
  • SalesForce
  • Spiceworks

Custom log ingestion

  • JSON
  • XML
  • Remote Retrieval

Active Response

  • OSSEC
  • Firewall Response
  • Network and System level Forensic capture
  • DLP

Professional Services

Available after project scoping

  • Options for use include platform health checks
  • Custom plugin creation
  • Platform integration projects
  • Temporary Trusted Advisor initiatives
  • Monthly availability

Learn More

The Castra Elastic Logger for USM Appliance

A fast and scalable solution to pair with your existing USM instance

Do you need to add long-term logging to your AlienVault USM? Do you want to combine the search power of Elastic with the advanced AlienVault USM platform? If you are looking to expand your AlienVault raw log storage while adding new possibilities for analytics, visualization and reporting, Castra’s Elastic Logger is for you.More Info