DataGrain RUMA

DataGrain RUMA is a solution that allows you to perform behavioral analysis of users and other entities, perform advanced monitoring, detect anomalies in various sections (time, subnet, obtained access rights, etc.) and visualize the results of analytics.
What does DataGrain RUMA address to:
The need to identify suspicious / malicious activity of users and / or workstations;
Insufficient degree of objectivity and awareness of the employees’ actions within the corporate infrastructure;
The need to identify the evidence of internal fraud in the company;
The need to detail user sessions, assign negative rating to user actions using appropriate numerical models;
The need to identify insider and illegal activities.
;

External threats:

  • Leakage of critical data;
  • Accounts compromise;
  • Exploits;
  • Assets compromise.

Internal threats:

  • Abuse of the granted rights;
  • Inconsistency of the used accounts;
  • Exploitation of vulnerabilities;
  • Insider activity.
Overview of the solutions available at the market for RUMA:
Редсофт
Российский поставщик решений и услуг в области информационных технологий.
Red Hat
Российский поставщик решений и услуг в области информационных технологий.
Jet
Российский поставщик решений и услуг в области информационных технологий.
Infosecurity
Российский поставщик решений и услуг в области информационных технологий.
AST
Российский поставщик решений и услуг в области информационных технологий.
ЕВРААС
Российский поставщик решений и услуг в области информационных технологий.
LAN PROJECT
Российский поставщик решений и услуг в области информационных технологий.
Информзащита
Российский поставщик решений и услуг в области информационных технологий.
Softline
Российский поставщик решений и услуг в области информационных технологий.
Benefits of DataGrain RUMA vs competitors:
  • Broad range of supported data sources - business and IT systems, various information security systems and flat files;
  • Use of advanced algorithms of statistical analysis and computer-aided learning;
  • Flexible mechanisms for modifying models and logic to detect anomalies, depending on the Customer’s nature;
  • Assignment of profiles of users and other entities, addressing predictive analysis challenges.
Expected outcome that the customer receives:
  • О User activity anomaly detection tools have been automated;
  • The degree of objectivity and awareness about the activities of the employees within the corporate infrastructure has been increased;
  • Increased efficiency and safety of business processes;
  • Reduced labor costs for manual development of correlation rules for newly emerging cases;
  • Recording suspicious activities of employees at early stages and predictive identification of potential incidents.
What will the price of the product depend on:
  • Number of employees in the company requiring analysis;
  • Type of integration with data sources: via SIEM or directly with sources;
  • Number of non-base cases requiring development / revision of ML algorithms;
  • Need for two-way integration with SIEM (create incidents in SIEM considering the results of identifying anomalies in UEBA);
  • Number of users who will be using the system (UEBA powered by BI QlikSense, which is user-wise licensed);
  • Need to customize system dashboards.
What shall the customer requests be, so we can offer DataGrain RUMA:
Upgrade of SIEM;
SOC construction / upgrade;
Abnormal user behavior;
Computer-aided learning;
Monitoring of employees and access rights;
Identification of compromised accounts.
Revealing insider activity;
Demo visualization
;
Order a pilot
we will contact you as soon as possible
By clicking the 'Submit' button, you accept the user agreement and agree to rules for the use and processing of personal data