NOMIC HQ

The single source of truth for all things Nomic.

Nomic HQ is a cloud-based platform that puts you in the driver’s seat. Review Events, Flows, and Signals, manage all your Nomic devices,  configure custom Threat Feeds, and interact with our Support Team ... all in one place.

instant demo
How HQ WOrks

"This is a huge time saver."

“My favorite aspect of HQ is the ability to baseline threat feeds. Our organization has multiple unique business internet circuits so it's fantastic to have a central management pane to subscribe and setup custom threat feeds and push them across the environment. The ability to even tailor a feed to an entire ASN has reduced threat surfaces from private hosting services."

city of seguin, texas
Joseph tripoli
it security manager

What is HQ?

HQ is our equivalent of Mission Control:  A single pane of glass that gives you a comprehensive view of every Nomic sensor across your internal and external deployments.

ONE  COHESIVE VIEW

Centralized Analysis

HQ collects every Alert, Flow, and Signal from each sensor deployed on your network, and presents them all in an intuitive, easy to use interface. Filters, saved searches, and aggregations are optimized for performance, so you can get what you need quickly and save precious time.

GLOBAL CONFIGURATION

Granular Control

Providing a central place to update device configurations simplifies sensor management and saves time. Update and deploy custom threat intelligence feeds, create custom Signals for Alerts and Flows, and monitor device health from one simple interface.

LEAN ON OUR SUPPORT TEAM

The Support You Need

Each design element in HQ is built with support in mind, making it easy to interact with our Managed SOC. Create tickets, mark events for review, and flag false positives ... all within the context of an event, and without disrupting your workflow.

INTUITIVE & EASY TO USE

We use the same tools as you do.

Our Managed SOC team uses HQ every day, to proactively track down critical events and keep our customers up to date on the latest threats. As we continuously work to improve support for our products, HQ's feature releases and bug fixes are forced to keep up the pace, too. That ensures you reap the benefits of HQ's rapid development, as well.

How HQ Works

One Pane To Rule Them All

Go beyond simple blacklisting, and manage configurable lists of network ranges, ASNs, countries, or domains that can be assigned and activated on individual Nomic sensors.

Community Feeds

A curated collection of threat intelligence blacklists from various industry sources, updated regularly and maintained by Nomic support. We use shared threat intelligence lists from cybersecurity leaders across the industry to blacklist known-bad networks.

Configuration Feeds

Custom, organization-specific feeds can be created by both Nomic support and customer organizations. HQ supports blacklists, whitelists, and alert-only feeds. Perfect for eyes-only threat intelligence from industry groups and ISACs.

CINS Active Threat Intelligence

Our proprietary threat intelligence feed is built on data gathered from our global network of Outpost sensors. CINS gathers attack data from every device, assigning a CINS Score to every flagged IP, and deploying updated blacklists to each sensor in real-time.

Reporting and Exports

Access and schedule global executive summary reports, ad hoc aggregation reporting across multiple dimensions, and  export Alerts and Flows easily from the HQ interface.

User and Organization Management

Manage all users and permissions in one place, and - if you're an MSP - keep track of your customer organizations, too. Perfect for teams that require various levels of access, based on their responsibilities.

File Management

All reporting, Alert, and Flow exports are archived in a File Manager, making it easy to access and export again at any time. You can also schedule reports to be conveniently delivered to your inbox.

Ensure your organization's cybersecurity is up to date with our managed NDR suite.

Outpost

Nomic Outpost is the first line of defense in a defense-in-depth strategy, dynamically identifying and blocking inbound and outbound threats, and hiding your network from threat actors. By positioning itself in front of the firewall and all public-facing assets, Outpost stops scans, exploits, and reconnaissance before they start.

Learn more

Insight

It’s hard to tell what really goes on between the firewall and the endpoints. Powered by Flows, Insight goes beyond traditional signature-based solutions to provide a comprehensive and  easy-to-use archive of network traffic and actionable ML/AI-driven Signals that watch for potentially malicious anomalies. Nomic Insight sidesteps the siloes to give you visibility beyond the known-bad – in a way few tools have done before.

Learn more

FAQs

Why do I need HQ?

HQ consolidates all your sensors' information in one place, so you can easily search and filter alert data across your entire network. It's also the only place to create and distribute threat feeds, including Geo-filtering. HQ's reporting makes it easy to produce Executive Summaries and ad hoc aggregations for all your sensors. And last but not least: It's the only place to access Insight's Flows and Signals.

Who uses HQ?

The short answer is: We all do. First, our team leans on HQ for our proactive support and monitoring - we use the same tools you do. Every organization is different, but HQ is indispensible to security teams for alert triage and monitoring as well as network admins that lean on network Flows for network troubleshooting. And don't forget the reporting tools, which make it easy to produce valuable summaries for daily analysis and justification for leadership and other stakeholders.