Silobreaker Ltd

Silobreaker Online

Silobreaker helps business and security professionals make sense of the overwhelming amount of data on the web. Users save time by working efficiently through big data-sets and improve their knowledge from analysing and contextualising data more easily. Customers represent OSINT use-cases for cyber-intelligence, geopolitics, physical security, and industry/market intelligence.

Features

• real-time open source information in 21 languages
• analytical tool-set that contextualises and visualises the data
• geo-mapping, link-analysis, entity extraction, time-lines
• trending- and early warning tools
• customisable dashboards and watch-lists
• intuitive and interactive visualisations and graphics
• auto-generated email alerts
• reporting and dissemination tools
• collaboration tools and workflow support
• online access from multiple devices

Benefits

• gain cyber intelligence on actors, malware, ransomware, breaches, vulnerabilities, IOCs
• perform asset-monitoring of products, brands, credentials, domains, IP-addresses
• gain OSINT on geopolitics, instabilities, terrorism, crime, incidents, disasters, diseases
• gain OSINT on companies, industries, markets, executives
• empower human analysis for detecting, predicting, responding to threats, opportunities
• collect, process, search and analyse data in a single system
• get out-of-the-box implementation without time-consuming onboarding
• disseminate findings to stakeholders in a timely and uncomplicated manner
• reduce cost, improve organisational efficiency in dealing with external data
• achieve high ROI from both time-savings and decision-support improvements

£70,000 a transaction a year

• Free trial available

Service documents

• Pricing document

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at kristofer.mansson@silobreaker.com. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 14

Service ID

692304091508143

Contact

Kristofer Mansson
08703666737
kristofer.mansson@silobreaker.com

Service scope

• Software add-on or extension: No
• Cloud deployment model: Private cloud
• Service constraints: Supports the following browsers: Chrome, Safari, Firefox, Edge
• System requirements:
  • Internet connection
  • Browsers supported: Chrome, Safari, Firefox, Edge

User support

• Email or online ticketing support: Email or online ticketing
• Support response times: For customer support, usually within 1-2 hours during Mon-Fri, same day during weekends.; For technical support as per our guidelines in our support policy.
• User can manage status and priority of support tickets: No
• Phone support: Yes
• Phone support availability: 9 to 5 (UK time), 7 days a week
• Web chat support: No
• Onsite support: Yes, at extra cost
• Support levels: Our aim is to respond to support requests immediately without delay. At a minimum, we will use our reasonable endeavours to ensure that the following targets are met in respect of product support requests:; ; 1 Major Error - Primary: 4 work. hrs, Target: 12 work. hrs, Permanent: 2 work. wks; 2 Serious Error - Primary: 8 work. hrs, Target: 2 work. days, Permanent: 4 work. wks; 3 Minor Issue - Primary: 5 work. days, Target: Fut. Release, Permanent: Fut. Release; ; Standard technical support included in subscription fees.
• Support available to third parties: No

Onboarding and offboarding

• Getting started: Silobreaker Online is built and designed to help users getting started without the need for long preparations or comprehensive on-boarding processes. On-boarding: Live demo - We provide a 45-60 minutes’ live webinar to welcome new users to Silobreaker Online and to demonstrate the basic features of the service. These webinars can be recorded and the video-recording shared and distributed amongst the customer’s users following the call. Ready-made setup - As part of Silobreaker’s delivery, user accounts are initially set up with ready-made dashboards and watch-lists specific to the customer’s domain, vertical, or areas of interest. These dashboards can be used ‘as is’ and/or as templates/guidelines for a user’s own setup and customisation. Integrated help – We provide an integrated user manual, available from inside the service, providing help and user tips ‘as-you-go’. Introductory Training - all subscription packages come with introductory and interactive training webinars. These training sessions, each lasting between 2-3 hours, are developed to get users familiar with all the tools and features in Silobreaker Online.
• Service documentation: Yes
• Documentation formats:
  • HTML
  • PDF
• End-of-contract data extraction: Data can be exported and extracted from the service at any time by the user during the subscription. Following the expiry of an account, access to the account will no longer be available and the data will be purged.
• End-of-contract process: User off-boarding is uncomplicated as the leaving user’s account will be expired, after which it can no longer be accessed and used. Expiring an account must be requested by the customer by email after which the account is closed by a member of Silobreaker’s support team. Once an account has been closed, a new account can be allocated to another user for the remaining time of the subscription.

Using the service

• Web browser interface: Yes
• Supported browsers:
  • Microsoft Edge
  • Firefox
  • Chrome
  • Safari
• Application to install: No
• Designed for use on mobile devices: Yes
• Differences between the mobile and desktop service: Silobreaker is designed to be used on both desktop and mobile devices. ; ; Our mobile-friendly browser-based version is our primary tool for mobile devices.
• Service interface: No
• User support accessibility: None or don’t know
• API: Yes
• What users can and can't do using the API: Silobreaker provides a REST API enabling consumers to utilize the full Silobreaker feature set, including;; - searching, analyzing and retrieving data; - managing Silobreaker Lists & Collections; - uploading documents; ; API documentation (requires authentication); https://api.silobreaker.com/
• API documentation: Yes
• API documentation formats: HTML
• API sandbox or test environment: No
• Customisation available: Yes
• Description of customisation: Dashboards, watch-lists, source-lists, reports, alerts, branding.; ; Customisation is intuitive in the UI and can be made by any user. Customisations can be shared read-only or collaboratively

Scaling

• Independence of resources: We constantly monitor system utilisation and over-provision hardware and infrastructure to handle between 2-10x expected load.

Analytics

• Service usage metrics: Yes
• Metrics types: We provide several user metrics, including consolidated metrics, UI metrics, mobile app metrics, alert metrics.
• Reporting types:
  • Regular reports
  • Reports on request

Resellers

• Supplier type: Not a reseller

Staff security

• Staff security clearance: Other security clearance
• Government security clearance: None

Asset protection

• Knowledge of data storage and processing locations: Yes
• Data storage and processing locations:
  • United Kingdom
  • European Economic Area (EEA)
• User control over data storage and processing locations: No
• Datacentre security standards: Managed by a third party
• Penetration testing frequency: At least once a year
• Penetration testing approach: Another external penetration testing organisation
• Protecting data at rest:
  • Physical access control, complying with another standard
  • Encryption of all physical media
  • Scale, obfuscating techniques, or data storage sharding
  • Other
• Other data at rest protection approach: User-uploaded data is encrypted both on physical media and in application layer. Physical and logical access control complies with the controls of a full-scope ISO 27001 accreditation of both Silobreaker and our third-party data center.
• Data sanitisation process: Yes
• Data sanitisation type: Deleted data can’t be directly accessed
• Equipment disposal approach: Complying with a recognised standard, for example CSA CCM v.30, CAS (Sanitisation) or ISO/IEC 27001

Data importing and exporting

• Data export approach: Data can be exported by using our export tools. Depending on type, data can be exported to various formats (STIX/TAXII, csv, docx, html, pdf, rtf, xml, svg, png, atom/rss)
• Data export formats:
  • CSV
  • Other
• Other data export formats:
  • Html
  • Docx
  • Xml
  • Rtf
  • Svg
  • Png
  • Atom
  • STIX/TAXII
• Data import formats:
  • CSV
  • ODF
  • Other
• Other data import formats:
  • MS Office doc/docx/xslx/xsl/ppt/pptx
  • Html
  • Pdf
  • Eml
  • Msg
  • Txt

Data-in-transit protection

• Data protection between buyer and supplier networks: TLS (version 1.2 or above)
• Data protection within supplier network: TLS (version 1.2 or above)

Availability and resilience

• Guaranteed availability: Silobreaker Online has a high availability with uptime exceeding 99.5% over the last 10 years, including scheduled maintenance. The subscription fee is non-refundable unless we have failed to resolve a product support request from you for a Major or Serious Error (see Service Levels) within 30 days of you making the support request. In such a case, you shall have the right to terminate the service and we will refund you the subscription fee pro-rata based on the remaining time of the subscription period for which you have paid in advance.
• Approach to resilience: High availability and resilience is ensured through a combination of factors; load balanced & mirrored web and application servers, mirrored/replicated database servers, spare parts on and off site for fast component replacement and 24/7 DevOps/incident response team. Servers and applications are monitored constantly using both external and internal sensors, with support team notified within minutes of a component or application failure.
• Outage reporting: Outages are reported to customers through email alerts.

Identity and authentication

• User authentication needed: Yes
• User authentication:
  • 2-factor authentication
  • Identity federation with existing provider (for example Google Apps)
  • Username or password
• Access restrictions in management interfaces and support channels: By Role-based security enforced by application layers.
• Access restriction testing frequency: At least every 6 months
• Management access authentication:
  • 2-factor authentication
  • Public key authentication (including by TLS client certificate)
  • Dedicated link (for example VPN)

Audit information for users

• Access to user activity audit information: Users contact the support team to get audit information
• How long user audit data is stored for: At least 12 months
• Access to supplier activity audit information: No audit information available
• How long system logs are stored for: At least 12 months

Standards and certifications

• ISO/IEC 27001 certification: Yes
• Who accredited the ISO/IEC 27001: SBCert
• ISO/IEC 27001 accreditation date: 16/01/2024
• What the ISO/IEC 27001 doesn’t cover: No exclusions.; ; The scope covers the full statement of applicability and all elements of our business from design and development to sales and operations.
• ISO 28000:2007 certification: No
• CSA STAR certification: No
• PCI certification: No
• Cyber essentials: No
• Cyber essentials plus: No
• Other security certifications: No

Security governance

• Named board-level person responsible for service security: Yes
• Security governance certified: Yes
• Security governance standards: ISO/IEC 27001
• Information security policies and processes: Silobreaker's information security policies cover (non-exhaustive list): - Security classification of data - Access policies for data according to classification and scope - Storage policy (encryption, etc) - Password policies (MFA, best practices, etc) - Behavioral policies (what can/cannot be discussed in different contexts) - Escalation procedures in case of information security incidents In Silobreaker, all report directly to CEO and CISO for any security-related incident.

Operational security

• Configuration and change management standard: Supplier-defined controls
• Configuration and change management approach: All system configuration is versioned with unlimited history. - Configuration changes are verified and subjected to technical, business and security review before applied. - Security assessment is done by internal security experts.
• Vulnerability management type: Supplier-defined controls
• Vulnerability management approach: Vulnerability scanning is performed continually, as well as using state of the art threat intel services for Vulnerability tracking and reports on 0-day exploits that could affect our infrastructure. - Patches are usually deployed as and when they are available. Critical patches are deployed sing emergency change management.
• Protective monitoring type: Supplier-defined controls
• Protective monitoring approach: Silobreaker uses a wide array of network monitoring/IDS tools to discover potential compromises. 24/7 DevOps & Security staff investigates and escalates immediately if necessary according to escalation procedures, involving both on-call CxO level executives and board members on Duty.
• Incident management type: Supplier-defined controls
• Incident management approach: Incidents are handled on a case-by-case basis. Users report incidents using our premium support channel with response within 1 business day for non-urgent incidents, or immediate (24/7) for urgent. Incident reports are sent by email to directly and indirectly affected users.

Secure development

• Approach to secure software development best practice: Independent review of processes (for example CESG CPA Build Standard, ISO/IEC 27034, ISO/IEC 27001 or CSA CCM v3.0)

Public sector networks

• Connection to public sector networks: No

Social Value

• Social Value:

  Social Value

  Fighting climate change

  Fighting climate change

  The service can be used for multiple intelligence use-cases, including for monitoring new development around climate change legislation, policy-making, research, and emerging technologies, as well as the effects of climate change (severe weather, natural disasters, etc).

Pricing

• Price: £70,000 a transaction a year
• Discount for educational organisations: No
• Free trial available: Yes
• Description of free trial: An evaluation trial/POC of the full service is available between 2-4 weeks and requires that (i) all trial-users have had an online demo of Silobreaker before the trial begins; and (ii) there are weekly follow-up calls with the customer to discuss the trial-experience so far and to answer feedback, questions.

Service documents

• Pricing document

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at kristofer.mansson@silobreaker.com. Tell them what format you need. It will help if you say what assistive technology you use.