|
Network Perimeter Security
Enterprise Security
Web Application and
Database xxxSecurity
Intrusion Detection
Content Security
Wireless LAN Security
Site Security Assessment
Network Perimeter
Security
xxxAssessment
Web Presence Security
xxxAssessment
Project Security
Assessment
Penetration Testing
Wireless Security
Assessment
Security Co-Sourcing
Director, Security Program
Policy & Procedure
Development
Business
Continuity Planning
Incident Handling
and Response
Security Program
Development
RELATED NEWS AND LINKS..........
Securewise's
Capabilities
DOWNLOAD FILES..........................
Securewise
Security Management
Model
|
|
|
|
|
What
is Smart Security?
Smart security
starts with the first layer of defense to your network formed by the security
gateways on the network perimeter, acting as a shield to protect your
critical resources from intruders. These security gateways (firewalls,
VPNs, remote access servers, portals) are programmed to allow the
good guys in (employees, customers, partners, and others) while keeping
the bad guys out, although it does not always work this way.
We refer to
this layer as "smart security" because we architect our enterprise
security solutions based on the following concepts:
- All elements
on the network perimeter should behave as a UNIFIED protective shield.
- There should
be a COMMON authentication, authorization and audit system to allow
and trace users beyond the perimeter. This function should not be performed
by the gateways, but rather by a separate layer which we term the Identity
Management layer in our framework.
- Firewalls
and IDS provide a false sense of security. If
the good guys can get through, there is a good chance the bad guys will
too. We work on the assumption that the gateways forming the network
perimeter can be compromised (malware, weak OS configuration, administrator
errors, etc.). Therefore, internal gateways and stronger identity management
systems should be deployed in conjuction to this service layer (see
our Identity Management Services)
- More security
breaches are committed by employees (intentionally, by negligence, or
accidentally) than by hackers. Therefore, security gateways on the perimeter
are not enough.
- We believe
in the 3Rs: REDUCE, REDUCE, REDUCE. Eliminate unnecessary gateways (eg.
provide access to resources through thin-client solutions or portals
instead of remote access and VPN; a single authentication system instead
one for each device).
- PRODUCTS
ALONE CAN'T PROVIDE ASSURANCE. Only the organization can achieve assurance
through management commitment and a framework of sound policies and
procedures.
We see ourselves
as partners in the process of providing you with the trust and confidence
in conducting eBusiness. Securewise offers the following services for
building the "protective shield":
Smart Security
Solutions
Assess
Site Security Assessment
Network Perimeter Security Assessment
Web Presence Security Assessment
Project Security Assessment
Penetration Testing
Manage & Respond
Security Co-Sourcing
Security Director - Retainer (Small-Medium Enterprise)
Security Policy and Procedure Development
Business Continuity Planning
Incident Handling and Response
Security Program Development
Protect and Detect
Network Perimeter Architecture Review
Project Security Review
Enterprise Security Architecture Workshops
|
|
- Firewalls
- VPNs
- Remote
Access
- Authentication
and Access Mgmt
- PKI &
Tokens
- Intrusion
Detection Systems
- Virus
and Content Management
- Audit
Trails
- Wireless
Access
|
|
