| |
 |
Home ServicesInformation
Security |
|
| |
Information
Security Professional Services |
|
| |
|
|
|
| |
|
CyberLogic Consulting works to maintain
the confidentiality, integrity and availability of its clients systems
by providing a full range of security services. We can improve upon
your existing security infrastructure or architect and implement
from the ground up secure solutions tailored to fit your environment
and to meet your goals. |
|
| |
|
|
|
| |
Our Capabilities |
|
| |
|
|
|
| |
|
Security Audit
Services |
|
| |
|
|
|
| |
|
CyberLogic Consulting can provide full Security Assessments
of your entire organization, department, or office following the guidance of the National Institute of Standards and Technology (NIST) Special Publications (SP) or the International Organization of Standardization (ISO) 27001, depending on whether your organization is bound by the Federal Information Security Management Act (FISMA), you do business with the U.S. Federal Government, or if you are a private organization who wants or needs to follow the ISO standards. These Security Assessments include Certification and Accreditation, Risk Assessments, Security Testing and Evaluations, Contingency Planning, Incident Response Planning, Disaster Recovery Planning, just to name a few. CyberLogic Consulting can help you prepare for full compliance with all applicable laws and security requirements. |
|
| |
|
top >> |
|
| |
|
Penetration
Tests |
|
| |
|
|
|
| |
|
Most organizations truly don't know the security status
of their computer network and attached systems. It is important to find out where your
network and system vulnerabilities are before somebody else does.
CyberLogic Consulting will perform external and internal penetration
tests by scanning your network remotely and internally, searching
for vulnerabilities that could put your organization at risk.
We can also audit information systems and network devices to discover
additional potential vulnerabilities and security holes. A detailed
written report indicating any vulnerabilities discovered will then
be provided. Depending on the customer’s needs, CyberLogic
Consulting can provide the corrective measures necessary to remedy
your security issues.
Security audits can be done on scheduled intervals that the client
sets, depending on the value of the data and risk the client is willing
to take; however, Cyberlogic Consulting recommends that scans are
performed at least quarterly. |
|
| |
|
top >> |
|
| |
|
Firewalls |
|
| |
|
|
|
| |
|
A site without adequate next generation IPS firewall protection can
quickly become compromised by intruders intent on obtaining proprietary
information or creating havoc on your network. Firewall technology
is the standard for protecting perimeter access to your network and
many firewall solutions are easy to put in; however it really takes
knowledgeable and dedicated security engineers to properly design,
implement and maintain a firewall solution. Our Certified
Security Engineers will ensure your firewall implementation
offers the desired, highest level of protection, giving your business or agency
complete piece of mind. |
|
| |
|
top >> |
|
| |
|
Intrusion Prevention Systems |
|
| |
|
|
|
| |
|
Information system intrusions can be as severe
as stealing or destroying confidential data to something more minor
such as misusing your email system for spam. There are two types
of intrusion detection systems, both of which CyberLogic Consulting
can design, implement and maintain. A network intrusion prevention
system monitors packets on the network wire and attempts to discover
if a hacker/cracker is attempting to break into a system (or cause
a denial of service attack). A host based intrusion prevention system
runs on individual servers/nodes, preventing unauthorized system modification
and alerting if unauthorized modifications do occur.
An intrusion prevention system is an important component of your overall
security system, for it is critical to be proactive, stop known attacks or unauthorized access or modifications
and know when your systems are being misused, so you can take immediate action
before costly harm is done. CyberLogic Consulting can design the
right intrusion prevention system(s) for your environment, including web filtering, or update,
upgrade and maintain your current intrusion prevention system. |
|
| |
|
top >> |
|
| |
|
Virtual Private Networks
(VPN's) |
|
| |
|
|
|
| |
|
Virtual Private Networks (VPNs) use the distributed
infrastructure of the Internet to transmit data between corporate
or agency sites. CyberLogic Consulting can design and implement site-to-site
and remote access VPNs to securely allow authorized users into your
network. CyberLogic Consulting can implement a broad range of VPN
technologies, providing secure access to critical computing resources
for:
| • |
Employees working from home
offices |
| • |
"Road warrior" sales personnel
or engineers connecting to information resources from hotels,
customer sites and partner locations |
| • |
Employees in new facilities acquired as
a result of a merger or acquisition |
| • |
Remote Offices interconnecting to each other
without expensive dedicated leased lines |
| • |
Business-to-business partners |
|
|
| |
|
top >> |
|
| |
|
Virus & Malware Protection |
|
| |
|
|
|
| |
|
New viruses are other malware are written and disseminated each
day; McAfee's Virus Information Library estimates that nearly 1,000
viruses are authored every month, costing organizations billions
of dollars annually. Computer viruses range from annoyance, espionage, financial theft, to hacker
remote control of your machines for attacks on other machines, to
just plain destructive. Most organizations have suffered the effects
of computer viruses and malware, and many more don't even know they are infected
and vulnerable.
Unfortunately, there is no magic formula to prevent malware. Managing
and coordinating virus protection, detection and defense requires
an on-going effort that entails a variety of tools, procedures, and
policies, and the most successful solutions combine efforts on several
fronts. CyberLogic Consulting can implement centralized, self-maintaining,
enterprise virus and malware protection for a variety of platforms, including
Windows, Linux, Mac and Solaris servers, desktops, email servers, and
even on the gateways to stop viruses before they get to any internal
equipment. In addition, we can implement other malware prevention methods
and tools to augment the malware protection software in the event
that a new outbreak can't be detected by the current software. |
|
| |
|
top >> |
|
| |
|
Security
Policy Authoring/Review |
|
|
|
|
|
| |
|
Security Policies are the basis for a sound security
implementation. Often, organizations will implement technical security
solutions without first creating a foundation of policies, standards,
guidelines, and procedures, which results in unfocused and ineffective
security controls. Whether your organization has an existing security
policy that needs updating or needs one tailed to fit your organization,
CyberLogic Consulting can create an effective, realistic and enforceable
policy for you. |
|
| |
|
top >> |
|
| |
|
Physical
Security Audits |
|
| |
|
|
|
| |
|
A physical security audit examines those elements
of the surrounding physical environment and supporting infrastructure
that affect the confidentiality, integrity and availability of information
systems. CyberLogic Consulting can address these threats, vulnerabilities
by recommending or providing countermeasures that can be utilized
to physically protect an enterprise's resources and sensitive information. |
|
| |
|
top >> |
|
| |
|
Wireless
Security |
|
| |
|
|
|
| |
|
Wireless local area networks (WLANs) are being
adopted around the world at an ever increasing rate. However, with
this increased reliance on WLANs, organizations should be increasingly
more concerned about network security, especially with the inherent
weaknesses of the WLANs protocols. CyberLogic Consulting understands
that organizations need to provide end users with freedom and mobility
without offering intruders access to the WLAN or the information
sent and received on the wireless network. We can audit your wireless
network infrastructure, finding dangerous rouge access points, make
sure WEP encryption security is configured. If the value of the data
on your network is high, we can deploy a customized security solution
using SSL or VPN technology to secure your wireless
links. |
|
| |
|
top >> |
|
| |
|
Incident
Response Handling |
|
| |
|
|
|
| |
|
During the unfortunate event of a security breach,
a concise plan using proper methodology is of utmost importance -
mistakes can be very costly. CyberLogic Consulting can customize
for your environment a well-defined and systematic plan for responding
to security-related incidents. The customized plan will follow the
six stages of incident response handling: preparation, detection,
containment, eradication, recovery and follow-up. |
|
| |
|
top >> |
|
| |
|
|
|
|
|
|
