|
|
 |
|
We deploy Secure Computing’s Sidewinder G2 as it has long been acknowledged as the world's strongest firewall. It is used in the most sensitive government networks, and has the highest security accreditations of any firewall. Sidewinder's strength is demonstrated by being the first firewall to be accepted into evaluation against Common Criteria's highest Evaluation Assurance Level available for firewalls EAL4+ which included EAL5 components.
The Sidewinder is the strongest platform in the world consolidating all major security functions in one system. It is deployed in 60% of Fortune 500 companies and in 106 countries worldwide. |
|
The firewall is built on the unique Zero-hour Attack Ptotections (ZAP) technology defending your networks and applications from all types of Internet threats, and delivering industry-leading application-layer performance and best-in-class security. The combination of an application-layer gateway with Type Enforcement technology provides a ONE - TWO punch far stronger than is available in any traditional firewall. It is the world's First Reputation-based firewall using TrustedSource to recognize and block unwanted traffic. Furthermore, by extending the powerful principles of
- containment
least priviledge
operating system integrity, and
control of priviledge
Secure Computing has created a superior architecture for comprehensive security for the enterprise. |
|
|
|
|
|
Sidewinder Firewall
International Business Awards
|
|
|
 |
|
Sidewinder G2 Firewall has received the prestigious "Editor's Choice Award" from CMP Media LLC's Network Computing after an exhaustive comparison review for being tops at combining protection and performance. Network Computing also awarded the Well -Connected Award for best Application Firewall. |
|
 |
|
Information Security Magazine praises: "An impressive security appliance, the Sidewinder Firewall provides powerful mechanisms to build distributive, secure and deployable policy rules |
|
|
|
|
|
|
|
 |
|
In their latest Firewall Magic Quadrant, Gartner states: “The combined product, Sidewinder represents the freshest and most advanced software proxy firewall, with central management and easy deployment.” |
|
 |
|
Sidewinder G2, including its OS, achieved the most in-depth Common Criteria EAL4+ certification ever awarded against a DoD protection profile and as well as for the highest number of security requirements for any application-level firewall. |
|
|
|
|
|
|
|
|
|
|
An essential component of our security strategy is the provision of Secure Remote Access to end points beyond IT control. We deliver scalable solutions to fit every organisation without the costly overheads needed to deploy per-seat clients.
Remote workers establish secure connections to the corporate network with just a PC and an Internet connection using only a Web browser. Corporate applications, remote desktops, e-mail, files and intranets can be accessed simply and securely. |
|
Our leading solution is SonicWALL’s SSL-VPN with differentiating features such as:
- one-time password capability allowing two-factor authentication
- multiple NetExtender IP ranges and routes
- context-sensitive help links and a
- Java client for RDP5 connections.
INTERNATIONAL ACCREDITATION
- According to Infonetics Research's Network Security Appliances and Software Report for Q4 06, SonicWall has achieved # 1
position in worldwide unit marketshare for SSL VPN gateways in 2006.
-
It has received certification from RSA, the leader in the two factor authentication market.
-
Also they have been certified for VPNC, the international trade association for manufacturers of the VPN market. |
|
|
|
|
|
|
|
|
|
|
Our Tight Security Strategy is further strengthened by our Identity & Access Management Implementation. Tokens are utilised to provide unique one-time passcodes for secure logins to remotely access all Mission-Critical Applications such as Data, Email (OWA) and Web Applications.
Ioscom recommends Secure’s SafeWord Premier Access solution which integrates seamlessly with Active Directory and has won the Authentication Systems category, making Secure Computing the only vendor to ever win two awards.
NETWORK ADMISSION CONTROL
Security is further underpinned by enforcing Security Policies on all devices seeking network access and thereby limiting the potential damage from emerging security threats and risks. |
|
Only compliant and trusted endpoint devices, such as PCs, servers and PDAs are granted admission onto the network, restricting access to noncompliant devices. Our prefered vendor solution is Cisco's NAC.
This technology gives organizations a powerful, roles-based method of preventing unauthorized access and improving network resiliency.
BENEFITS:
-
ensures that endpoints conform to security policy; protects infrastructure and employee productivity;
-
secures managed and unmanaged assets;
-
supports internal environments and guest access;
-
tailors policies to your risk level
-
mitigates risks from viruses, worms, and unauthorized access:
-
controls and reduces large-scale infrastructure disruptions; |
|
|
|
|
|
|
|
|
| IOSCOM SECURITY HEALTH CHECK & MANAGEMENT
|
|
|
|
|
|
|
TODAY’S INSECURE WORLD (Data Loss / Costs Statistics) |
|
|
|
85% of organizations surveyed reported data breach events (Scott and Scott LLP and Ponemon Institute LLC, May 2007)
20% of organisations have sustained financial losses due to attacks on mobile data platforms (EIU & Symantec’s Internet SecurityThreat Activity Research, March 2007)
A major security breach will put 1 out of 3 companies out of business (McAfee and Datamonitor’s Data Loss Survey, 2007)
On average, the cost of preventative measures is 4 x less than the cost of a breach (2006 Annual Study: The Cost of Data Breach. Ponemon Institute, LLC, 2007) |
| HEALTH CHECK |
|
NETWORK ASSESSMENTS |
|
| With a Comprehensive Security Health Check, we take the pulse of your network security controls and diagnose your security strengths and weaknesses. Ioscom also offers recommendations to help you design a strategic security roadmap or simply identify specific solutions to resolve your business network security weaknesses. |
|
Our consultants identify and test potential points of attack on every live host and available service. We identify all network vulnerabilities and concentrate on areas where a compromise would have the greatest impact and create the highest risk to your business.
Vulnerability Scanning |
|
 |
We perform an assessment of your organisation's network security in the following essential areas:
-
Security policy and process
-
Security organization and personnel
-
Asset management and classification
-
Physical and environmental security
-
Network security and operations management
-
Security access controls
-
Information systems acquisitions, development, and maintenance
-
Information security incident management
-
Business continuity management
-
Compliance |
|
We take a holistic view of the network in order to achieve a high level of success in our vulnerability scanning and assessment processes into the target network.
Penetration Testing
We scrutinise all hosts for any weaknesses that could be used by an internal attacker to disrupt the confidentiality, availability, or integrity of your systems.
Vulnerability Analysis
An in-depth analysis of the vulnerabilities is performed to determine their causes and to develop strategic recommendations following which we then categorise our recommendations by people, process, and technology. Our Vulnerability Assessment provides a rapid and efficient inventory of the devices, services, and vulnerabilities of internet-connected networks.
A typical comprehensive security assessment consists of the following assessment areas:
-
External assessment
-
Firewall assessment
-
VPN assessment
-
Wireless security assessment
-
Social engineering
-
Server configuration assessment
-
Microsoft® Windows® assessment
-
Network architecture assessment
-
Mobile security assessment
-
VoIP security assessment (if applicable)
-
Physical security assessment |
|
FIREWALL SECURITY ASSESSMENT
We perform detailed analyses on firewalls for incorrect configurations, poor policies and deployment architectures that can possibly lead to a false sense of security, and to ensure that malicious intruders do not gain access to your critical assets. During our firewall security assessment, we review architectures and configurations, perform appropriate vulnerability scans and interview the firewall administrator.
EXTERNAL ASSESSMENT
Our assessment begins with securing internet-connected devices on your network such as routers, firewalls, DNS servers, web servers, database servers, and even legacy hosts that have no internet-related business purpose.
Footprint Analysis & Information Gathering
We measure your network's overall risk by gathering a detailed blueprint of your company's network and its internet security profile. We gather domain names, IP network ranges, and information about hosts, such as operating systems and applications.
Penetration Testing
To achieve thorough penetration testing we offer a variety of options that include social engineering, denial of service testing, IDS/incident response validation exercises, and more. We examine whether your network can be penetrated from the outside and setup a list of all security vulnerabilities on your perimeter network.
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|