Overview
Combinations of technical and non-technical solutions are required to maintain a well rounded security program. Alexander Open Systems addresses the spaces that are at highest risk. The use of these solutions gives our customers a competitive advantage, enabling them to use business resources and access information securely. A combination of protection, detection and response based administrative and technical solutions is required to provide a true layered approach to your key business assets.
Risk Assessment
Understand key business assets & valid threats facing them is the first step in creating a security practice for your company. AOS works with key data owners to evaluate both financial and business impacts combining that information with an Industry standard (ISO27002) best practices guide to security to determine the threat likelihood facing each asset.
Security Awareness Training
People are the weakest link in most organizations. Proper awareness training and enforceable policies are key to security success in businesses today. AOS can help prepare and deliver awareness training ultimately strengthening the human factor in company security.
Vulnerability Audits / Penetration testing
The technical side of the assessment practice. Our certified engineers perform our audits following a defined & proven model for assessing your key business assets.
Security Assessment Tools
Enabling our customers to perform local vulnerability assessments helps them to better understand their environment and relevant threats facing their key systems. AOS can both sell and help train customers on how to use the latest assessment tools in the market today!
Incident Investigation, Forensics, Recovery
In the event an information system is compromised, AOS can help get you back on your feet, determine where the threat came from and how to prevent it from happening again. Such events may include virus outbreaks, system breaches or general loss of availability to key systems.
Security Assessment Tools
Enabling our customers to perform local vulnerability assessments helps them to better understand their environment and relevant threats facing their key systems. AOS can both sell and help train customers on how to use the latest assessment tools in the market today!
URL Filtering
Today’s solutions not only block undesirable websites and enforce company policy but can be used to measure productive use of the internet resources.
Security Event Management
This volume of log data makes it impossible to manually cross reference events between systems. SEM solutions help solve this problem through automated alerting, reporting, and investigation of events as they occur.
Intrusion Detection / Prevention
Intrusion Detection Systems (IDS) and Intrusion Prevention Systems (IPS) allow a security administrator to increase visibility. Network traffic can be monitored for abnormal or malicious activity and be proactively prevented from reaching their target system.
Identity Management &
Single Sign On
Password security and user access issues have become a major concern for organizations. Balancing usability operational efficiencies & security is the only way to effectively decrease the risk created by the network’s weakest link, people.
Disk or File Encryption
Data at rest has become an easy target. Especially data left unsecured on mobile devices such as laptops or PDAs. If a system is ever lost or stolen, an enterprise may be exposed to significant risk of financial loss, legal penalties, and damage to the company brand.
Data Loss Prevention
Protecting customer and other confidential data from malicious and accidental leaks is one of the top business and IT security challenges facing organizations today.
Remote Access & Network Encryption
The need for access to information and network resources from anywhere in the world has driven the need for remote access solutions. The most common methods for delivering encrypted access to protected resources are IPSEC and SSL VPN technologies. These options can be complemented with two-factor authentication and standard directory integration.
Patch Management
Assessing and maintaining the integrity of software in a networked environment through a well-defined patch management program is the key first step toward successful information security, regardless of the physical access restrictions to a computer.
Anti-Virus
Computer viruses are one of the oldest threats to information security. Viruses can compromise the integrity of information systems. Enterprise anti-virus solutions use a layered approach that includes Messaging, Web, Network, and Endpoint security.
Firewall
Most firewall designs include features that hide the true IP addresses of the systems on the trusted portion of the network. Firewalls today have the ability to include application services including: Network Anti-virus, URL-filtering, IDS/IPS, SSL VPN, IPSEC VPN, and Advanced Authentication Options.
Anti-Spyware
Using company equipment for personal use increases the risk. Appropriate corporate policies along with technical defenses are recommended to lower the risk associated with mal-ware.
Anti-SPAM
With email being an essential communication tool for any modern organization, it is important to protect your organization from some of the challenges presented to messaging administrators all over the world.
|