CYBER SECURITY
Cybersecurity Assessment
Cyber Security is essentially protecting information from getting into the wrong hands. The data in todays world resides in an electronic form housed in a wide array of devices. The challenge is to protect the data on the devices where it sits and when it is in motion. The data can sit either on prem or in the cloud and can be accessed via number of applications. It is vital to protect the applications as well, which accesses the data and the network it traverses.
- Security Architecture Review
- Cyber Security Config and Policy Review
- Penetration Testing
- Vulnerability Assessment
Security Architecture Review
Study and analyze the security architecture and identify gaps.
Configuration and Policy Review
Carefully review the configuration and policies on the security appliances; and recommend finetuning steps.
Penetration
Testing
Run external penetration tests to identify potential holes in security which malicious entities may exploit
Vulnerability Assessment
Run scans inside the network to identify vulnerabilities on end devices like servers, workstations and other network devices.
Cybersecurity Services
Cybersecurity is the practice of protecting systems, networks, and programs from digital attacks. These cyberattacks are usually aimed at accessing, changing, or destroying sensitive information; extorting money from users; or interrupting normal business processes. Implementing effective cybersecurity measures is particularly challenging today because there are more devices than people, and attackers are becoming more innovative.
- Identify & Analyze
- Certify & Prepare
- All Levels Protection
- Detect & Respond
- Managed Services
Identify & Analyze
Vulnerability Assessment, Penetration Testing, Applications Testing and Periodic Assurance Services.
Certify & Prepare
Cybersecurity compliance with local and international standards, Awareness and Risk Management.
All Levels Protection
Application Level, System Level, Network Level, Data Level and Access Level.
Detect & Respond
Threat Detection, Threat Hunting, Behavior Analysis and Incident Detection & Response.
Managed Services
Service Level Agreements, 24x7 support center, Periodic Assurance Services and Managed Security Platforms as a Service.
Case Study
Firewall Security Review
Challenges
- Customer had issues due to recent migration from Juniper Firewall to Palo Alto with large amount of FW policies ported over
- Overlapping/Redundant Policies caused potential gaps
- Data Center had grown over time with mix of OS
- Patching of hosts over time had become difficult and not all of them were up to date on patches
- Vulnerability to 0-Day Attacks and Remote Code Execution
Our Services
- Analyzed Firewall policies and corresponding events and provided recommendations for cleanup
- Modified PAN FW settings using their Best Practices guide
- Ran discovery scans using Tenable (Nessus) to discover assets in Data Center for complete inventory
- Ran Vulnerability scan using Tenable (Nessus) to identify vulnerabilities in each system.
- Formulated a remediation plan to remediate vulnerabilities.
Outcome
- Firewall policies reduced by 50%, eliminating redundant and unused policies
- BPA score moved from red to green
- Identified a lot of Vulnerabilities, there by identifying gaps in patching cycle
- Identified Legacy systems and zombie systems, leading to their decommission, there by reducing vulnerable surface area
- Next scan showed vulnerabilities decreased by 70%
Cyber Security Case Study
Challenges
- Fraudulent transactions on e-commerce portal
- DDOS attacks
- PCI-DSS Non-Compliance
Our Services
- Leveraged OnPrem & AWS Cloud solution
- Carefully analyzed events and updated policies in Imperva WAF to reduce fraudulent activities
- Fine tuned Imperva configuration to circumvent DDOS and other OWASP Vulnerabilities
- Analyzed PCI- DSS requirements and implemented controls by covering gaps and adding missing controls for compliance