Worry Free Managed Network Security
IT security landscape is vastly different from years past where antivirus and a basic firewall solved most problems. Attacks are becoming much more sophisticated, and attack patterns are emerging and changing with increasing frequency. Relying on virus signatures and stateful packet inspection firewalls without subscription services no longer works. A layered approach is necessary to ensure a secure computing environment. Threats entering the network can cause considerable damage, from creating downtime for users at a minimum, to causing data loss and financial compromise in a worst case scenario.
Russell Technologies Includes:
- A next generation firewall at each of our clients and review the subscription services stack:
- Gateway Anti-Virus utilizing a different engine than our endpoint protection to act as an extra double check
- Intrusion Prevention Service
- 125 Category web content filtering platform
- We set up 29 to be blocked by default that are directly related to security with the reset being elective by the client, and can be universal or segmented by work role, group, subnet, user
- Application Control
- IP reputation checking for web traffic
- Behavior based port blocking policies, and blocked site
- Geographically blocked IP addresses to help limit the attack surface to from inbound attacks, as well as limit link and dropper execution and “phone-home” for outbound communications
- Alarming of high risk inbound and outbound traffic to RT’s SOC Team
- Bot-Net Herding Detection and Prevention
- All Software and Firmware Updates pushed as they come available from Russell Technologies’ Worry Free Managed Security Server (Typically averaging OS Updates every quarter, and signature updates hourly)
- Monitoring and logging on Russell Technologies’ Security Logging Server A typical month’s threat heat map (varies based on month and firewall):