Intrusion Prevention

The fast pace in which malicious exploits aimed at gaining unauthorized access into systems and networks are developed, necessitate the introduction of equally fast and proactive means of protecting valuable organizational resources.

Overview

Intrusion Prevention Systems (IPS) are network security/threat prevention technologies that examine network traffic flows to detect and prevent vulnerability exploits before gaining control over an application or machine. As an in line security component, the IPS works swiftly and efficiently to avoid degrading network performance and prevents the exploits’ eruption in near real time. Without compromising an organization’s security posture, IPS technologies protect business-critical assets from advanced threats.

Characteristics

Our IPS solutions share the following minimum characteristics:
Optimal Protection & Alerting
Dynamic, real-time alerting and protection of possible network threats by effectively analyzing network traffic flows. Ability to identify, prevent and audit suspicious activities on protected hosts
Health Monitoring
Constant traffic monitoring traversing the network for protocol and RFC violations identifies and blocks traffic not complying with protocol and RFC requirements
Highly Effective
Capability to align IPS access policy/protection directly with organizational cybersecurity policy, thus enabling swift and effective deployment of organizational security frameworks
Simplified Management
Incorporated centralized administration ensures changes across the board and reduces management costs
Instrumental Reporting
Actionable views, event monitoring and reporting enable swift threat remediation and constant compliance
Deployment Flexibility
The deployment model of the IPS solution is designed to fit the organizational needs of the existing environment, as a multi-vendor solution

Features

Effective & Accurate Protection
Constant monitoring of network traffic flows ensures regular and accurate signature/protection updates in combination with real-time effective detection and prevention of network threats
Real-time Alerting & Reporting
Extensive real-time alerting and reporting of events through configurable reports, log data and traffic captures of triggered events
Central & Powerful Management
Centralized management system aggregates data across organizations’ security defenses and enables security teams to respond quickly
High Availability
Active-passive mechanism offers uninterrupted operations during system failures or updates/maintenance

Deployment

Designing and deploying an effective IPS solution is an extremely complex task for any organization. Drawing from our ever-growing expertise, developed through our Technology Risk Solutions and Managed Security Services (MSS) divisions, we are uniquely poised to design and implement an effective IPS solution for you, no matter how complex or dispersed your environment is.

Remaining Secure

Our suite of post-deployment services is designed to offer further enhancements to your network, systems and applications, as follows:

Maintenance & Support

Integration with ClearSkiesTM NG SIEM with

Big Data Security Analytics

Full-fledged 24/7 Managed & Security Log monitoring

This solution comprises part of the “Test & Assess’’, ‘’Design & Implement”, ‘’Monitor & Respond’’ and ‘’Consulting’’ phases of our Information Security Continuum (ISC).