Information Security

Symantec Advanced Secure Gateway

Symantec Advanced Secure Gateway (ASG) combines the functionality of the Symantec ProxySG secure web gateway with the intelligence of Symantec Content Analysis to offer a single, powerful web security solution that delivers world-class threat protection. Advanced Secure Gateway is a scalable proxy designed to secure your web communications and accelerate your business applications. ProxySG and ASG draw on a unique proxy architecture that allows organizations to effectively monitor, control, and secure traffic to ensure a safe web and cloud experience.

• Control web and cloud usage with fast app performance
• Establish negative-day threat defense
• Implement multi-authentication realm support
• Gain visibility into encrypted web traffic

Palo Alto Networks Next Generation Firewall

Trustwave AppDetectivePRO

Palo Alto Traps

Endpoint protection and response

• Stops threats on endpoints and coordinates enforcement with network and cloud security to prevent successful cyberattacks
• Combines powerful endpoint protection technology with critical endpoint detection and response (EDR)
• Enables security teams to automatically protect, detect and respond to known, unknown and sophisticated attacks.

Ivanti device control

Device and port control

To enhance productivity, you need to provide your users easy access to data, often outside the network. But the risk of opening the door to malware and data loss through devices is a real concern. Ivanti Device Control, powered by Heat, provides effective, scalable protection. Ideal for servers, fixed-function assets (e.g., POS, ATM, and pay-at-the-pump systems), and thin-client or virtualized endpoints, Device Control allows you to quickly identify and lock down endpoints to prevent unauthorised use of removable devices and ports, and to prevent unknown apps from being installed and executed—reducing your attack surface exponentially.

Ivanti application control

Application control is essential

Patching is the first step to reducing the risk of ransomware and other malware. But how do you block what you can’t patch: zero-day exploits, legacy systems, and patches that could break something in your environment? Application Control, powered by AppSense, combines dynamic whitelisting and privilege management to prevent unauthorized code execution without making IT manage extensive lists manually and without constraining users. Happy users mean help desk calls and reining in shadow IT don’t become the end all and be all of your IT team’s tasks.

MobileIron

Redefining enterprise security for the perimeter-less world with a mobile-centric, zero-trust approach.

• The zero trust approach – How do you protect data when your organization is no longer bound by traditional security perimeters? Only a zero trust approach — one that always verifies every endpoint, app, network, and user that wants to access business resources — can secure data in a perimeter-less enterprise.
• Mobile-centric, zero trust security for the perimeter-less enterprise:
• Securely provision devices – Quickly onboard and secure a vast range of employee devices coming into the enterprise.
• Grant conditional access – Ensure only trusted devices, apps, and users can access enterprise resources.
• Protect data and eliminate threats on-device – Detect and remediate threats on iOS and Android devices, with or without Internet connectivity.
• Enforce security policies – Ensure that devices, apps, users, and networks meet compliance requirements before allowing access to business apps and data.

Palo Alto Networks Next Generation Firewall

• Stay on the cutting edge – Replace disconnected tools with tightly integrated innovations, like the new DNS Security service. DNS Security
• Intel and automation to prevent attacks – Use global intelligence and automation triggered by analytics to find and stop unknown attacks instantly. Malware Analysis
• Total visibility and consistent protection – Get visibility and prevention across data center, branch, mobile and cloud, so you can protect consistently. One Console Management
• Adopt best practices for prevention – Use tools and resources that help you adopt industry best practices so you can thwart attacks in their tracks. Best Practice Assessment

Forescout

Introducing the first Unified Device Visibility for IT and OT Environments. Security starts with visibility – want to know what is on your network? We tell you what is on your network with device visibility. This visibility enables you to have 100% device inventory, ensure their compliance, control appropriate access levels and respond to security incidents.

• 100% AGENTLESS DEVICE DISCOVERY – No device agents or previous device knowledge needed. Discover and profile the ever-expanding number and types of devices connecting to your network: IoT and OT devices (passively), traditional endpoints, operating systems and virtual instances that are constantly joining your extended enterprise.
• CONTINUOUS POSTURE ASSESSMENT – The Forescout platform continuously sees these devices in incredible detail and monitors their behavior and compliance status as they come and go from the network. We continuously enforce your security policies based on changing device context.
• ABILITY TO TAKE ACTION – Starting with basic, repetitive tasks and expanding over time to more complex controls, automate control actions to free up skilled IT resources. And improve NAC, device compliance, network segmentation and incident response initiatives.
• SUPPORT FOR HETEROGENEOUS ENVIRONMENTS – The Forescout platform works with leading network infrastructure vendors and third-party security solutions. Use your preferred switches, wireless routers, firewalls or VPNs—with or without 802.1X authentication. This flexible platform also accommodates your evolving network without requiring network upgrades or vendor lock-in.
• SCALABLE AND MODULAR PLATFORM – Continuously monitor up to 2 million devices in a single deployment across campus, data center, cloud and operational technology networks. Gain visibility and network controls across IPv4 and IPv6 devices.

CyberArk

CyberArk are the Pioneers and they still Lead the Way. CyberArk is the undisputed leader in the Privileged Access Security market. Working with a market leader gives our customers the advantage of a proven leadership team, the industry’s broadest global presence and the largest and most diverse customer community.
Comprehensive functionality:

• In the Cloud – Secure privileged credentials across your hybrid cloud, IaaS, and SaaS environments and deploy CyberArk in the cloud of your choice. SECURE CLOUD WORKLOADS AND INFRASTRUCTURE
• On-premises – Secure credentials, isolate and monitor sessions, and prevent privileged attacks for your on-premises infrastructure and applications. PRIVILEGED ACCESS SECURITY SOLUTION
• At the point – Enforce least privilege, control applications, and prevent credential theft on endpoints to contain attacks and stop lateral movement. ENDPOINT PRIVILEGE MANAGER
• In DevOps – Simplify secret management with validated, ready to use CI/CD toolset integration and available as free and open source software. APPLICATION ACCESS MANAGER

Ekran System

Ekran System is an on-premises agent-based software product supporting various deployment options. Ekran system delivers monitoring and protection Clients for different types of endpoints, centralize and store data on the Ekran System Server side and provide a centralized Web-based management panel.
The Client captures user screens with mouse moves according to the recording settings and simultaneously logs important metadata such as application names, titles of active windows, keystrokes, etc. Ekran System Clients help to monitor user activity, manage access, and prevent malicious actions on any type of desktops and servers:

• Infrastructure servers,
• Terminal servers,
• Jump servers,
• Physical and virtual desktops.

Fudo Security

IBM Qradar SIEM

IBM® QRadar® Security Information and Event Management (SIEM) helps security teams accurately detect and prioritize threats across the enterprise, and it provides intelligent insights that enable teams to respond quickly to reduce the impact of incidents. By consolidating log events and network flow data from thousands of devices, endpoints and applications distributed throughout your network, QRadar correlates all this different information and aggregates related events into single alerts to accelerates incident analysis and remediation. QRadar SIEM is available on premises and in a cloud environment.
Key features:

• Ingest vast amounts of data from on-prem and cloud sources
• Applies built-in analytics to accurately detect threats
• Correlate related activities to prioritize incidents
• Automatically parses and normalizes logs
• Threat intelligence and support for STIX/TAXII
• Integrates out-of-the-box with 450 solutions
• Flexible architecture can be deployed on-prem or on cloud
• Highly scalable, self-tuning and self-managing database

Cyxtera

Secure Infrastructure for the Modern Enterprise – Modern enterprise IT is diverse, dynamic and distributed. Cyxtera is bringing together advanced cybersecurity with a global data center platform to secure and support your systems and apps wherever they run.
Accelerate Your Zero Trust Journey with AppGate SDP (Software Defined Perimeter).

• Identity-Centric – Designed around the user identity, not the IP address. AppGate SDP builds a multi-dimensional profile of a user or device and authorizes users before granting access to micro-segmented networks.
• Zero Trust Model – Leverage micro-segmentation to apply the principle of least privilege to the network. It completely reduces the attack surface.
• Built Like Cloud, For Cloud – Engineered to operate natively in cloud networks, it’s completely distributed and as scalable as the internet itself.

A Software-Defined Perimeter (SDP) architecture is made up of three primary components: a client, controller and gateway. The controller is where the brains of the system resides, acting as a trust broker for the system. The Controller checks context and grants entitlements. The controller and gateway are completely cloaked.

nCipher Security

A hardware security module (HSM) is a dedicated crypto processor that is specifically designed for the protection of the crypto key lifecycle. Hardware security modules act as trust anchors that protect the cryptographic infrastructure of some of the most security-conscious organizations in the world by securely managing, processing, and storing cryptographic keys inside a hardened, tamper-resistant device.

Arista

Cognitive Wi-Fi solution

• Optimizes wireless experience
• Enabled to learn, predict and protect the wireless network
• Harnessing the power of the cloud, big data analytics, automation
• Reduces the mean-time-to-resolve problems
• Minimizes troubleshooting effort for the network

OneSpan

• INTELLIGENT ADAPTIVE AUTHENTICATION – Detect and prevent more fraud more accurately with automated analysis of countless user and device data points in real time to evaluate the risk inherent in every transaction. Then, based on the context and the associated risk, enforce the right level of authentication for that particular situation. INTELLIGENT ADAPTIVE AUTHENTICATION 
• MOBILE SECURITY SUITE – Gain visibility into mobile security risks for stronger security and authentication. Establish trust in untrusted mobile environments, harden your apps against attack, and implement leading biometrics and authentication methods in the mobile channel. Easily integrate app security and authentication capabilities into existing mobile apps. MOBILE SECURITY SUITE

• MOBILE AUTHENTICATORS – Quickly configure and publish customized mobile authenticator apps for use by your customers. Customize and deploy mobile authenticator apps to the official app stores quickly and easily. OneSpan Mobile Authenticator Studio is an intuitive configuration studio for mobile authenticator apps that eliminates the need for extensive app development or in-depth technical knowledge. MOBILE AUTHENTICATORS