Midsize Business Solutions NETWORK INTRUSION PREVENTION with iSENSOR
Transcript of Midsize Business Solutions NETWORK INTRUSION PREVENTION with iSENSOR
NETWORK INTRUSION PREVENTION with iSENSOR
secureworks.com
What is Network Intrusion Prevention?Network Intrusion Prevention is one of the most important steps
you can take to protect your organization from unauthorized
access. By defending the edge of your network, you are best able
to deter both targeted and random attacks that may compromise
your systems. Network Intrusion Prevention from SecureWorks®
employs sophisticated analysis and blocking techniques including:
• Signature deployment
• Anomaly detection
• Protocol recognition
• Behavior-based heuristics
• Human analysis of patterns
Why Implement Network Intrusion Prevention as a Service?You can certainly purchase devices that promise network intrusion
prevention. However, it is difficult for organizations to respond to
alerts, apply continuous updates and provide vigilant monitoring
24x7. Our clients have found it more effective to augment their
staff with our team of Security Analysts who can ensure that they
are protected from new and emerging threats.
Integrated Security Management ProcessIntrusion Prevention is one component of an integrated, defense-
in-depth security strategy delivered by SecureWorks that
includes full management of firewalls, network IPS and IDS, host
IPS, encrypted email, 24x7x365 security monitoring, security
information management, vulnerability scanning, Web application
scanning, third-party compliance risk management, security
and risk consulting, and global threat intelligence. SecureWorks
enhances your organization’s safety by ensuring that protection
is implemented with a continuous process that reflects a rapidly
changing business and security landscape.
Service Benefits
Prevent attacks before they compromise your network
Update automatically against the newest threats
Protect yourself around the clock without adding
headcount
Allow legitimate traffic to flow uninterrupted
“We decided to implement SecureWorks when a
neighboring company was attacked and blackmailed
for the return of stolen account numbers. Our service
was up in an hour and has been 100 percent effective in
protecting us.”
- Client, Financial Services
Midsize Business Solutions
secureworks.com
NETWORK INTRUSION PREVENTION with iSENSOR
secureworks.com
Service Scope• iSensorTM appliance at your site
• 24x7 real-time monitoring from our Security
Operations Centers
• Protection against hacker attempts before they
compromise your network
• Continuous updating of attack signatures
• Access to the SecureWorks Portal, an online
tool designed for account management, iSensor
configuration changes and network activity reports
• Customizable escalation procedures
Reporting• Immediate, graphic reports with clear explanations of
intrusion attempts
• Secure access to reporting and account administration
through two-factor authentication
• Multiple layers of reports for more, or less, information
depending on your preference
Executive-level dashboards graphically present key metrics that are both informative and actionable, enabling you to make better security decisions and improve your security posture. You can also easily drill down from the dashboards to access detailed, in-depth reports.
• iSensor appliance installs in less than an hour.
• No technical expertise required.
secureworks.com
NETWORK INTRUSION PREVENTION with iSENSOR
Regulation requirements• Safeguard customer records (GLBA)
• Ensure confidentiality of patient records (HIPAA)
• Gather and analyze information on new threats and
vulnerabilities, and demonstrate effectiveness of
existing security controls (FFIEC)
• Assist in identifying hackers (NCUA)
• Encrypt electronically transmitted and stored
customer data (FIL)
• Protect against threats to confidential customer
records (OCC)
Comprehensive reporting is provided via the Web-based SecureWorks Portal. Reports can be easily customized.
“An effective IPS system must:
1) Not disrupt normal operations
2) Block malicious actions using multiple algorithms
3) Have the wisdom to know the difference between
attack events and normal events.”
- Gartner Group
NETWORK INTRUSION PREVENTION with iSENSOR
secureworks.com
The SecureWorks Security Operations Centers SecureWorks’ five integrated Security Operations Centers are
staffed 24x7 by a highly certified team of Security Analysts.
We require all of our analysts to hold the SANS GIAC GCIA
(SANS GIAC Certified Intrusion Analyst) certification. Our analysts
also hold a variety of security industry and product certifications
including CISSP, CCNA, CCSE, CCSA, MCSE, etc.
Advanced Correlations and AnalysisSecureWorks uses our proprietary Sherlock Security
Management Platform to perform advanced correlation and
analysis. This powerful technology correlates all activity across
our iSensor appliance and virtually any security technology to
detect both known and emerging threats in real time. The Platform
also fully leverages the knowledge we gain from monitoring the
networks of more than 3,000 clients, allowing us to take what we
learn at one of our clients (for example, when we discover a new
threat) and apply it across our entire client base. This ensures that
your assets are protected from the very latest emerging threats.
SecureWorks is part of the International FIRST Response TeamThe Forum of Incident Response and Security Teams (FIRST) is
the premier organization and recognized global leader in incident
response. FIRST brings together a variety of computer security
incident response teams from government, commercial and
educational organizations. FIRST aims to foster cooperation and
coordination in incident prevention, stimulate rapid reaction to
incidents and promote information sharing among members and
the security community at large.
Copyright © 2009-2011 SecureWorks, Inc. All rights reserved.SecureWorks, Counter Threat Unit (CTU), iSensor, iScanner, Sherlock, Inspector, LogVault and Compliance Central are either registered trademarks or service marks, or other trademarks or service marks of SecureWorks, Inc. in the United States and in other countries. All other products and services mentioned are trademarks of their respective companies. This document is for illustration or marketing purposes only and is not intended to modify or supplement any SecureWorks’ specifications or warranties relating to these products or services. SecureWorks is an Equal Opportunity Employer.
DS-0111
24x7 monitoring of your security environment with
dynamic updates to protect you from new threats
Compliance reporting that is ideal for auditors and
examiners
Identifies the control and provides evidence
of adherence
Easy-to-understand operational reports
Forum of IncidentResponse andSecurity Teams
Service Features
secureworks.com