| |
Services
Cyfence provides security solutions and services relying on demands or necessities of organization.
Cyfence is the investment to the clear future and the effective developments without the threat and risks to the systems.
|
|
With managed security services, customer’s devices will be monitored and managed through the Security Operation Center (SOC) where security analysts and experts are working 24 hours a day and 7 days a week throughout the year to ensure a timely response to unexpected event and to protect customer digital asset. The security monitoring is done in real-time and, upon a risk event, the immediate notification will be delivered directly to the IT manager. Events log from disparate security devices will be correlated at SOC using the state of the art correlation tools. The parsing and normalization of data will help reducing false positive and identify real threats. The incident response will be act upon to help resolve some serious threats and vulnerability exposed to the customers. The customized and summarized report will be delivered to the IT manager in a timely manner to meet the corporate requirement and security policy compliance.
Security Monitoring & Management
- Firewall Management
Real-time security monitoring and manage firewall configuration and activities. Guard the perimeter security by detecting and responding to malicious attacks coming through all firewall devices. To maintain the up-to-date firewall configuration, the configuration will be remotely managed, signature updates, software support and system upgrades.
- IDS/IPS Management
Real-time security monitoring and manage Intrusion Detection System (IDS) and Intrusion Protection System (IPS) alerts. Unusual activities and alerts will be correlated to pinpoint malicious attacks to the IT infrastructure. To maintain the up-to-date IDS/IPS configuration, the configuration will be remotely managed, signature updates, software support and system upgrades.
Incident Management
Comprehensive incident management services will help the customer to accurately identify important characteristics of an incident so that appropriate resolution can be executed to mitigate and bring to the closure of incidents. Effective incident management will consolidate various events from heterogeneous sources, identify incidents, prioritize incidents based on business impact, track incidents to closure, and implement best practices guidelines. Four phases involve in responding to an incident.
- Containment : Restricting the scope and magnitude of the incident.
- Eradication : Eliminate the source of the problem and avenue of entry.
- Recovery : Returning effected systems to their fully operational state.
- Follow-Up : Documenting the impact of the incident and implement measures to avoid recurrence.
|
|
