Net ProActive Services - Managed Security Services

Security is an ongoing process targeting a dynamic environment in which new threats arise daily. One of the most important processes for maintaining an acceptable level of security is the detection of unauthorized network and system activities, and responding to them. Intrusion Detection Systems can provide this capability for an organization’s IT infrastructure.

Intrusion Detection Systems become extremely relevant in environments where security of certain network domains and mission-critical servers is of utmost importance. Typical examples of these systems would be transaction-enabled websites, credit card databases, enterprise information etc.

IDS systems collect information from the system log files for servers and applications and from the network traffic. This information is then analyzed for signs of intrusion or scanning attempts from both within and outside the organization. The intrusion attempt is intercepted before the system is compromised.

Remote IDS by Net ProActive Services - unobtrusive and continuous surveillance

A primary prerequisite of the IDS to function efficiently is that it requires appropriate configuration, constant updates and proactive monitoring by skilled and dedicated resources. Most organizations find the cost associated with such a resource-consuming supervision to be carried out in-house, to be very constraining.

The Net ProActive Services Remote Intrusion Detection Service is an automated, real-time intrusion protection system providing unobtrusive and uninterrupted surveillance. On discovering a security breach or network abuse, the service will report it and swiftly respond to the threat.

Net ProActive Services offers Intrusion Detection Service on a 24/7 basis from its Network Operations Centre (NOC) located at its state-of-the-art facility, International Management and Resource Center or simply the IMaRC.

Remote IDS from Net ProActive Services offers automated and real time security service in continuance with the business of the client and his changing needs.

After an in-depth study and detailed audit of your infrastructure set up and application flow, the IDS management console at IMaRC is connected to the customer IDS agents over a secure VPN channel.

The IDS agents monitor the traffic for any security breach on a continuous basis and raise an alert to the security expert at the IMaRC who is notified by way of a trouble ticket.

Once the intrusion attempt is identified, IMaRC experts respond to the event by re-configuring the customer’s Firewall or by resetting the attacker’s connection.

We integrate tools such as HP NNM for alert management and Remedy for trouble-ticketing and notification for effective intrusion detection and prevention. To enable easy tracking of information for the client, a single point of contact is maintained for the intrusion detection service. Concepts such as these enhance the user-friendly approach employed by Net ProActive Services.

Net ProActive Services classifies an intrusion attempt at three levels of severity which decides how and within what time-frame the incident has to be resolved. A customized escalation matrix and easy-to-read, actionable reports based on the severity of the attack, ensure the problem is escalated accordingly and handled swiftly, with least possible damage.

A post facto Forensic analysis of logs and traffic patterns is also carried out to reveal the origin of the intruder in an effort to eliminate repetition of a similar breach attempt.

Net ProActive Services also offers availability monitoring of the IDS device and IDS Policy Management including customizing and updating patterns and attack signatures-.

As part of its Intrusion Detection service, Net ProActive Services also carries out Intrusion Trend Analysis which empowers our team to understand a pattern of attack and be ready with the most effective defense against the offender.