Managed Security Services
Managed Intrusion
Detection / Intrusion Prevent Services
(IDS / IPS)
infotex will install sensors on your network that utilizes snort. As a founder and sponsor of bleedingsnort.com, we are confident that our signatures will be up-to-date and meet your needs. However, we will also write custom signatures to address any unique needs at no additional cost.
The professionals on our NOC will monitor alerts from your network 24x7x365, with an average response time for critical alerts of less than 10 minutes. Our blocking signatures will automatically block almost 35% of the types of security incidents in real time. During our signature tuning period, we will work with you to develop an Incident Response Plan that connects with our Decision Tree, allowing you to proactively choose exactly how you want us to respond to each type of alert in seventeen different response categories.
Log Monitoring
Our LogMon Compliance System will acquire, consolidate, monitor, and report on any and all log activity from hardware (servers, firewalls, network devices) as well as software (e-mail applications, active directory, AVS, content filters, patch management applications, etc).
infotex will monitor all logs fed to sensors by the client for critical and non-critical events, filter them down to actionable events, responding in real-time to critical events per customized business rules. Bandwidth is not tied up by massive log transfers to our NOC . . . we only receive pertinent alerts and critical logs for analysis. No need for special encryption technologies just to monitor logs. Logs are stored for the short term and long term on a server on the client’s premises. infotex will store all logs for the long term, periodically archiving them to read only media and delivering to the client for long term storage. A web interface will be made available for searching all events. Log storage lends itself to bullet-proof forensics analysis. infotex uses standard syslog for event capture. On average, 2,600 logs per server per day are reduced to 2 actionable events.
In addition, our data security analysts watch the system in real time and react to emergency events 24x7x365.
SOX / GLBA / HIPAA Compliance require ongoing monitoring of logs so this service is one of our current favorites!
Link (Ping) Monitoring
Also called “ping monitoring,” infotex will monitor all links documented by the client on our NOC portal by connecting sensors to your network that ping critical links. These sensors will be configured and tuned to report all link outage events to our Network Operations Center (NOC). Security personnel will monitor these events 24x7x365. In the event of an outage that is longer than 10 minutes our NOC personnel will put in a ticket with the ISP and notification will be sent to the appropriate client employees.
Port Scanning
infotex will scan a range of IP addresses on a periodic basis (weekly or monthly), reporting the ports that have changed since the last scan. Not only is this a great security tool, but it is an excellent change management tool as well.
System Performance Monitoring
We will monitor system load, disk space, and a number of other system attributes. infotex Security Analysts will alert appropriate personnel in the event of system load extremes, disk problems or errors, and any pre-defined event directives. infotex will also perform long term trending to be able to alert you when servers are being regularly pushed beyond load norms or are underutilized.
Managed Firewalls
We specialize in the day-to-day operation and administration of firewalls 24x7x365. Not only do we monitor your firewall, but we also manage it. This allows you to use your IT resources more efficiently.
Let infotex help your organization
with your Managed Security Service needs!
Infotex Portal Articles
