Firewall (NGFW)

The firewall provides comprehensive network protection, simplifies deployment, management, and follow-up by integrating all security components into a single device and managing the security of the entire network from a single center.

DDoS protection

A solution that protects against DDoS attacks by analyzing user behavior and requests, accumulating and analyzing statistics, detecting DDoS attacks based on deviations and anomalies, blocking illegitimate traffic by dynamically filtering network packets with automatic generation of DDoS attack signatures in real time. The system blocks DDoS attack without disrupting legitimate users.

Web Application Firewall (WAF)

Reliable protection of web applications through the simultaneous use of dynamic profiling, logging analysis, protocol checks for anomalies and session tracking. WAF optimizes business operations, minimizes reduce of service quality and prevents downtime.

Sandbox

A system for emulation of various threats without harming the surrounding infrastructure. Sandbox detects the very attempt to implement malicious code, not its consequences. This allows to resist the most subtle attempts to bypass the sandbox and go unnoticed.

Network device access control

Centralization of network access policies and automation routine tasks are the main advantages of solutions that allow implementation of the concept of “bringing your own devices” (BYOD) among employees or organization of secure access to data center resources. All decisions are made based on a single access policy that applies to wired or wireless network segments and remote access connections. Solution helps to ensure reliable control over compliance with regulatory requirements, increases the level of infrastructure security and optimizes network maintenance operations.

Network access policies management

Network configuration audit and optimization system. The solution is designed to analyze network configurations in order to optimize them, increase network bandwidth, comply with security requirements, visualize the current topology, analyze and control changes and ensure the correctness of segmentation.

Network microsegmentation

A comprehensive solution for data centers and cloud platforms protection, which reduces the attack area of organization through a simple and intuitive implementation of the principles of microsegmentation and Zero Trust. In addition, the solution allows to detect, investigate and respond to security incidents around the data center. Network microsegmentation provides a deep understanding of the dependencies and traffic flows between data center applications, allows security policies to be applied at the network or process level, and allows critical applications and infrastructure to be isolated and segmented.

Network behavior anomaly detection

Real-time network monitoring for any unusual activities or events. Network behavior anomaly detection tools are used as additional threat detection tools to monitor network performance and to generate general warnings, which often require further evaluation by the IT team. Solutions have the ability to detect threats and stop suspicious actions in situations where traditional security software is ineffective. In addition, the tools suggest which suspicious actions or events need further analysis.

Antivirus protection

Specialized solutions for detecting computer viruses and malware in general, and recovering files infected with such programs, as well as for prevention of infection of files or operating system with malicious code.

Encryption

Solution provides a high level of data protection on desktop and mobile PCs through use of reliable encryption and authentication algorithms before downloading.

Endpoint Detection & Response (X/EDR)

Solution for complete protection of workplaces and prevention of penetration into organization's network through intelligent behavioral analysis and anomaly detection. X/EDR detects compromised endpoints - using compromise indicators, automates investigations and responses, eliminates manual work, analysts' time consuming, and allows faster processing and verification of suspicious incidents. Solution visualizes all processes and actions, creating a complete and clear picture of what happened (who/what/when/how), giving instantly and clearly data of the investigation.

Mobile device protection

The solution helps to protect all areas of users' mobile lives. It protects sensitive data by blocking malware that leaks private information. It protects against middle-class attacks on cellular networks, Wi-Fi networks, OS exploits and phishing attacks.

File integrity monitoring

The system is designed to detect changes in critical files on servers, workstations and networks. Solutions allows to prevent any unauthorized changes, detect internal violators and prevent damage by hackers. It also helps to ensure compliance with regulatory requirements for data integrity monitoring and change management. 

Inventory and update management

Inventory and management system for server and workstation updates. The solution is designed to create a CMDB database for all elements of the infrastructure, change management, install updates for all types of operating systems and automate recurring administrative tasks. 

SCADA systems security

The solution provides a complete overview of the industrial management system, including dynamic asset inventory, real-time monitoring of networks management and technology data, comprehensive threat intelligence to build secure infrastructures and implement security policies to control risks.

Security Proxy

The solution covers a wide range of applications and provides safe web use, malware protection and end users granular control. The security gateway allows to control all web applications, users and PCs. This reduces the complexity of managing, implementing and enforcing security policies.

Secure Email

The solution provides a comprehensive protection of messaging infrastructure. The multidimensional approach protects e-mail infrastructure, provides high-precision protection against spam and protects against a wide range of viruses and malware delivered by e-mail. 

Cloud Access Security Broker (CASB)

CASB is a cloud service designed for real SaaS threats that blocks attacks designed to steal data from SaaS and cloud e-mail. It provides complete protection against malware and zero-day threats, sophisticated phishing attacks and capture of SaaS accounts. The solution uses artificial intelligence to detect malicious content in SaaS e-mail accounts and blocks sophisticated phishing techniques that bypass traditional CASB and e-mail protection solutions. Office365 and G-Suite are protected, as well as shared files and downloads on Box, OneDrive, etc. 

Identity and access management

Centralized user access control system. The system is designed to centrally manage all types of access of employees, partners, vendors and contractors in all systems based on role models or automated negotiation processes. Allows to accelerate audit and analysis of accesses in systems, to provide implementation of the principle of least privilege, and also to guarantee conformity of actual and standard accesses through all infrastructure. 

Multifactor Authentication (2FA)

We implement Cisco Duo password-free authentication, which provides secure access to any user from any device to any IT program in any environment. The solution does not depent on infrastructure and paves the way for a password-free future. It provides seamless protection for any combination of enterprise cloud and local programs, without requiring multiple authentication products and without leaving critical security vulnerabilities.

Privileged Access Management (PAM)

Privileged access management solution that combines storage and secure passwords, as well as session recording with the ability to block unsafe activities and detect abnormal user behavior.

User behavior analytics (UBA)

The solution is designed to record and analyze sessions of both local and remote users, including employees, contractors and partners. Allows to detect unauthorized access, theft or transmission of authentication data, security policy violations and malicious activity. It also allows to control the use of wearable storage devices in corporate network, implement two-factor authentication for access to enterprise applications and passwordless access (SSO).

Data Leak Prevention (DLP)

The solution detects, classifies, tracks, protects and manages sensitive data wherever it is stored and used - online, on endpoints, mobile devices or storage systems.

Database security

The system provides automatic search and classification of confidential data, real-time monitoring of transactions and cognitive analysis to detect unusual actions with confidential data. It prevents unauthorized access by studying the patterns of user access to data and can issue alerts about suspicious actions in real time. It can dynamically block access or quarantine user IDs to prevent internal and external threats, and simplify and automate workflows to ensure regulatory compliance.

Security information and event management (SIEM)

Solution that collects, analyzes, and manages network events and flows from devices, endpoints, servers, antivirus, firewalls, and various intrusion prevention systems. It uses Sense Analytics advanced mechanism to detect normal behavior, anomalies, advanced threats and to remove false-positive results.

Security Orchestration, Automation and Response (SOAR)

Platform for coordination and automation of incident response processes. It integrates quickly and easily with existing security and IT tools. This solution allows to immediately work out security warnings, provides valuable analytical information and the context of the incident, providing an adaptive response to complex cyber attacks. It provides a flexible intelligent response to complex attacks with automatic adaptation to incidents in real time. The main functions of the platform are: predictive response management (Security Module component), coordination and automation of response (Action Module), unauthorized access messages management (Privacy Module).

Deception 

Network trap and lure system. The system is designed to automatically emulate infrastructure components and lure potential attackers. Allows to detect intrusion on early stages, detain the attacker, learn his methods and prevent damage to critical enterprise systems and data.

Vulnerability scanners

A comprehensive solution for real-time asset inventory, continuous vulnerability management and threat detection, which is operating at the customer's site. It combines live asset detection, vulnerability assessment, threat intelligence, journal data analysis and continuous network monitoring to provide complete information on security, corporate risk and regulatory compliance. It also correlates what happens online with threat intelligence. Allows information security professionals, analysts and auditors to work together on a single base of assets, vulnerabilities and threats.

Security systems stress test

The BAS (Breach and Attack Simulation) class system allows to perform different types of attacks on infrastructure in a completely safe and secure way and to assess the level of cybersecurity systems tasks and efficiency performance. In addition to self-assessing and increasing security, this system will be useful for pentest conduction, SOC team training and security assess of your contractors, who may affect the level of security of your business.