Syteca is modularly designed to cater for SMBs, SMEs and Enterprises that need basic its basic to full functionalities to monitor insider threats and control accesses to critical IT assets. It also allows the monitoring of outside contractors accessing the network through "jump server (s)". It supports SIEM platforms, such as, ArcSight, Splunk, IBM Qradar and also ticketing system. e.g., SysAid, ServiceNow, etc.
SYTECA STRUCTURE and ARCHITECTURE
Syteca Clients
Syteca Clients help to monitor user activity, manage access, and prevent malicious actions on any type of desktops and servers:
The most complete set of supported platforms:
The Client captures user screens with mouse moves according to the recording settings and simultaneously logs important metadata such as application names, titles of active windows, keystrokes, etc.
The monitored data is sent to the Syteca Server for storage and analysis, or, if there is no network connection, is stored in the Client protected cache until the connection is restored.
You may configure the Client depending on how intensive security monitoring should be, up to making screen captures every second or based on each mouse click or key pressure. You may enable the special protected mode to ensure the safety of Client work and integrity of monitored data.
Syteca enables easy solution deployment providing remote Client installation options. | Syteca Server
Syteca Clients send monitored data to the Syteca Server, which analyzes the data and stores it in a central database. If the monitored data contains events that correspond to user-defined rules, the Server generates instant alerts and initiate automated response if needed.
The Server is also responsible for storing the configuration data, sending the update packages to Clients, performing database cleanup, and creating reports and corresponding statistics.
Syteca Server can optionally work with third-party MS SQL, PostgreSQL or embedded free Firebird databases, allowing for a flexible choice depending on your security, economical, and processing speed needs.
Web Management Tool
The Management Tool is the primary Syteca user interface. It allows you to manage Clients, configure security alerts to potential incidents define and assign permissions to Syteca users, manage access to endpoints as well as view and analyze monitored security data received from Clients.
Solution Architecture
Combining various types of Syteca Clients, you can protect and increase visibility of each part of your particular IT infrastructure. For large deployments, we provide high-availability mode to improve system stability and multi-tenant mode to meet data segmentation and isolation requirements.
|
Basic Deployment Scheme
You can achieve maximum visibility and control of any activity performed within your infrastructure by installing a Client of corresponding type to each endpoint.
|
Jump Server Deployment
You can install just one Syteca Terminal Server Client on a jump server to monitor all sessions that come through it and, if needed, manage access to endpoints within the protected perimeter using Syteca PASM toolset. |
Multi-tenant Mode
The Multi-tenant mode was developed for professional service companies managing security of their clients and big organizations with geographically separated offices and independent departments.
This deployment mode allows multiple independent tenants to operate in Syteca environment. Data of each tenant including monitored data, user credentials, Client names, System configuration, etc. is completely independent and not accessible by other tenants. |
|
