Managed Internet Security Services from Security Confidence provides the physical equipment and professional expertise to manage the security safeguards in your internet attached network. Security Confidence offers complete systems monitoring and proactive responses to block, detect, alert, report, and respond to any kind of incident or threat which may occur. Managed Firewall & VPN Services provide an effective and efficient means of managing your organization’s secure connectivity to the Internet.
Security Confidence’s Managed Firewall & VPN Services enable businesses to benefit from a reduction in operating expenses, employee/IT time spent on technical support, and the security concerns an organization has by being connected to the Internet. This peace of mind is accomplished through a sophisticated combination of Fortinet Fortigate Security Appliances, our Guardian Firewall Analyzer, and the highly technical skills of our Security Operations Team.
The solution provides the following services:
FIREWALL
The firewall your company utilizes should have complete control of how information flows in and out of your network to the Internet. The firewall functions through a strict set of complex rules called security policies that are used to allow or restrict connections to or from your network to the Internet. The Fortinet devices used for this solution are appropriate for networks of all sizes and complexity, ranging from Small Business to Enterprise Networks.
INTERNET CONTENT FILTERING
As part of customized Internet Connection Profiles, Content Filtering offers an easily understood approach to organizing the Internet into 56 web page content categories. These categories range from Spyware to Pornography and contain the largest and most accurate content database of the Internet, covering over several billion web pages. In conjunction with 24x7 Reporting and Alerting detailed listings of websites visited by individual users and workstations are available. This allows your business to monitor your employee internet usage and to determine possible violations of corporate security and content policies. Selected categories can be actively blocked with custom user notification screens and alerts.
GATEWAY BASED ANTI-VIRUS
As part of customized Internet Connection Profiles, the Gateway Based Anti-Virus system can scan and remove viruses and infected files before they enter or exit your network. The ICSA Certified antivirus scanner allows for complete virus scanning of all web traffic, email traffic, and file transfer (FTP) connections. The service also has the ability to block any specific file types from passing through the system. This includes files that may contain sensitive data such as database files, Word and Excel documents, or files that contain a digital signature which identifies their sensitivity.
GATEWAY BASED ANTI-SPYWARE/GREYWARE
Spyware and Greyware are currently one of the most prevalent problems facing Internet Users. These attacks can range from applications that track your every move on the Internet, produce pop-ups, or dial your modem to 1-900 based “pay numbers”. As part of customized Internet Connection Profiles, the Spyware system identifies these applications and actively blocks them prior to their reaching your computer. In conjunction with Internet Content Filtering, the Gateway Based Anti-Spyware system offers unprecedented protection from these types of attacks. Reporting and Alerting for this service provides detailed information and notification of Spyware and Greyware infected files that have been blocked from entry into your network.
GATEWAY BASED ANTI-SPAM
As part of your Internet Connection Profiles, the Gateway Based Anti-Spam uses a variety of methods to identify spam entering your network. This service works with any type of email service. Emails are identified by content, sender address, sender location on the Internet, email header, or through databases of known addresses of spammers. Simple mail server or mail client rules allow for complete customization of how mail is processed upon identification. Detailed information regarding statistics of the anti-spam system and emails identified is available through the Reporting and Alerting System.
NETWORK BASED INTRUSION PREVENTION & DETECTION
Identifying and actively blocking attacks and malicious programs in real time is the primary function of the Network Based Intrusion Protection & Detection System. This ICSA Certified service combats some of the most prevalent problems facing business networks today: Peer-to-Peer File Sharing applications, Instant Messaging, Back Door Hacking Tools, and over 1000 other Internet Attacks. When used in conjunction with the Reporting and Alerting Systems, detailed information regarding blocked attacks and alerts can be reviewed on demand.
VIRTUAL PRIVATE NETWORKING
Virtual Private Networking (VPN) provides secure communications over the Internet for employees, business partners, and clients. This service allows for secure connections to and from remote networks or for remote users and traveling employees. Your network can be configured to utilize IPSEC VPN, SSL VPN, or PPTP VPN. The Reporting and Alerting system can provide detailed connectivity reports regarding these connections.
INTERNET AUTHENTICATION
Internet Authentication can verify that only permitted users are accessing the Internet via your network. The service can utilize an internal database of users, integrate with a Windows Domain Controller, or a Radius Authentication Server. After a user is authenticated their access of the Internet can be monitored based upon their user name. This service also allows for authentication of Intranet Servers, further simplifying user management of internal resources.
BANDWIDTH SHAPING
With the evolution of VoIP technology (Voice Over IP) the importance of being able to manage how your bandwidth to the Internet is utilized has never been more important. The priority of the data packets that make up voice and video applications is far greater than that of simple web surfing or email. Bandwidth Shaping allows for customized QOS (Quality of Service) for your most critical internet applications and remote communications.
SYSTEM HEALTH & INTERNET AVAILABILITY
Security Confidence will immediately discover any problem with your connection to the Internet as we continuously monitor the status of your system’s Health & Internet Availability. We frequently check your device to ensure memory and processor utilization are within tolerances; as well as ensuring your network is able to access the Internet. In the event of any irregularity, Security Confidence immediately creates a trouble ticket and investigates the issue. Through the Reporting and Alerting system you can receive immediate alerts of network outages.
DYNAMIC DNS Services
The necessity of purchasing a static IP address in order to periodically connect to your office over the Internet is no longer required. With Dynamic DNS Services you always have access to your organization’s network via an easily remembered Internet Name.
24x7 REPORTING & ALERTING
The essential component of our service is our 24x7 Automated Reporting & Alerting System named Guardian Firewall Analyzer. This web based reporting solution is completely hosted by Security Confidence, meaning that no additional hardware, software, or expensive server licensing is needed. The service offers over 150 dynamic drill down reports which can provide unlimited means of viewing Internet activity. Moreover, the system has a fully programmable alerting system that allows you to be notified for specific events through a customized alert profile. Scheduled reports are also available, delivering the information you need directly to your inbox at the time and date you specify.
CONFIGURATION, SUPPORT, MANAGEMENT & HELPDESK
All of the services listed above can be completely managed by Security Confidence or in conjunction with your IT Team. Typically, initial configuration, firmware updates, unlimited policy changes, support requests, and programming updates are included in this service. All information regarding changes, support issues, and technical support requests are available for your review within our state-of-the-art online helpdesk system. The service also provides access to our knowledgeable support professionals to answer any questions you may have about this service or Internet related issues.
FEATURES:
- Expert Fortinet Firewall Management
- Monitoring of firewalls from our Security Operations Center
- Alerts clients of unexpected events
- Provides firewall maintenance, conducting most firewall changes within four hours of client request
- Perform regular configuration backups
- Real-time intrusion detection reporting for immediate notification of hostile activity
- Overcome security challenges resulting from limited resources or a shortage of skilled security engineers on staff
- Defend your organization’s computing assets from loss and/or damage from network attacks
- Protect critical data and sensitive information from compromise or modification
- Reports overall firewall activities, system configurations and change management
- Provides support for Virtual Private Networks (VPNs)