Loading

Why earthwave

From improved information security to impressive cost savings, earthwave offers a number of compelling benefits for outsourcing your security operations to the earthwave Managed Security Services team.

earthwave remotely monitors your network security 24x7, using best-in-class technology tools, under the watchful eye of a multi-disciplinary team of security experts, notifies you when events require attention, acting within pre-determined parameters that keep the control you need to manage your systems effectively and efficiently.

earthwave is the only focused managed security service provider that can truly offer unique and complete security solutions. earthwave unites IT infrastructure monitoring with security expertise. This ensures that a company's entire computing environment is secure, available, fast and connected. earthwave's vendor independence ensures the best-of-class solution for your environment.

Channel Friendly MSSP - earthwave is the only pure play vendor of Managed Security Services. Each managed service is available from a number of earthwave Certified Security Providers. This flexibility allows any business to receive best-of-breed security management indirectly from the industry leader and as part of a broader offering from an existing trusted business services provider.

Local Presence - Offered 24x7x365 and utilised by some of Australia's largest corporate and government organisations, all of earthwave's services core functionality is developed and delivered from Australia. This functionality makes up much of the product we offer to our valued customers around the world today.

Security Operation Centres (SOC) - The earthwave SOC's, serve as home to earthwave's security analysts, as well as customer engineering groups. Designed for maximum redundancy, earthwave's multi-million dollar, state-of-the-art SOC's contain redundant, discrete power sources, fire suppression systems, three-factor biometric personnel screening and VPN termination points that allow interoperability with nearly any client network. The earthwave SOC is the engine enabling earthwave Managed Security Services. The SOC combines the capabilities of multiple Security Operations Centres (SOCs), advanced analysis and correlation, artificial intelligence, industry-leading security expertise and a high impact Web-based management portal in a single unified system. The SOC has been designed to reduce the complexity and burden of manual data analysis and improve the accuracy of security event identification, incident escalation and remediation.

Real-time Security Information & Event Management Architecture - earthwave's Real-time Security Information & Event Management Architecture is an enterprise-wide risk management solution enabling earthwave Security Operation Centre (SOC) analysts to centrally manage attacks, threats and exposures by correlating security information from firewalls, intrusion detectors, virus scanners, VPN's, OS's, authentication solutions, vulnerability scanning tools and other security checkpoints. The solution enables the analysts to eliminate clutter such as false-positives while quickly identifying the real security threats to help them respond with adaptive security measures.

earthwave data collection capabilities are the most versatile in the industry and run the gamut from a centralised collection point at the SOC ("agentless" aggregation) to deployment at various devices and concentrators throughout the network using patented SDA technology.

earthport - The earthwave MSS Client Portal, earthport, is the partner and/or customer branded secure web-based interface that displays consolidated security views of your infrastructure. earthport consolidates information from multiple sources and correlates the data to identify a problem's origin and provide actionable information. It allows you to adjust the granularity of your view by drilling down to the device or equipment level to see additional details about the cause of a problem as well as associated trouble tickets. Access to the system is secured with token-based authentication and SSL encryption.

Security Device Agent (SDA) - earthwave's SDA is a secure proprietary device that provides a fault-tolerant communication and management channel between the client site and earthwave's Security Operation Centres (SOC's). The SDA cannot be seen or accessed from the Internet as it connects directly to earthwave's SOC's via an encrypted tunnel and relies on industry-standard VPN encryption algorithms and technologies such as IPSEC, Triple-DES encryption. The SDA also uses SSH, leveraging Blowfish or Triple-DES, to talk to the security devices for command-line editing. earthwave can collect thousands of events per second from the monitored firewalls, intrusion detection systems and other sources which are stored in a relational database for analysis, display, investigation and reporting.

An important element of the SDA is data aggregation strategy which is a complete, 100% capture of the status, alarms and alerts from the various firewalls, intrusion detection systems and other relevant sources that are being monitored, no matter what topology of agents and centralised collectors is used. This means that every field from every event is available for real time correlation, display, investigation and reporting.

In addition to doing the raw data collection, the earthwave SDA normalises every alarm and alert into a common security schema, filters out unwanted traffic, sets severity according to a common taxonomy and intelligently manages bandwidth to minimise network traffic.

Security Experts - Our team of certified security experts bring a century of combined cyber security experience with such organisations as CERT, Department of Defence, IBM, Cisco etc. to augment the knowledge base of your IT organisation and provide peace of mind that skilled technicians are there to help you respond to and mitigate threats.

Trusted Partner - earthwave MSS represents an unparalleled commitment in providing services that enable businesses to engage in electronic commerce, communications and collaboration with confidence.

Proven Track Record - earthwave is easily regarded as one of the largest and oldest MSSP's in Australia with over 20 services, hundreds of MSS clients and thousands of security devices under management. This track record is consistent across our key vendors including Cisco Systems, McAfee, Check Point, Nokia, Crossbeam, Juniper, PatchLink, RSA and others.

Certifications - The earthwave SOC is the only local operation certified to the levels of ISO/IEC 27001:2005, DSD Highly Protected Gateway, PCI DSS, Cisco MSCP, ACSI 33 and ASIO T4. It is a mandatory part of employment for all earthwave MSS staff to gain Highly Protected government clearances. In addition, all earthwave internal and customer data including configuration files and logs are backed up and stored at a government certified facility.

Industry Leading Services and Service Level Guarantees - earthwave offers the largest portfolio of Managed Security Services together with the industry's highest quality of service. Evidenced by the company's guaranteed Service Level Agreements and backed by periodic tracking reports.

Execution Capabilities

Earthwave is a privately held company with a strong financial position. Our MSS business has grown faster than the industry average for the past three years to make earthwave one of the largest MSSPs in Australia with thousands of customer devices under management. Our MSS management team is globally recognised for their experience and maturity.

earthwave currently boasts over 40 medium to enterprise channel partners including carriers and security integrators.

Vision and Strategy

earthwave maintains market leadership by reinvesting significant portions of annual MSS revenue into research and development. earthport - MSS Client Portal and the earthwave security information and event management architecture, leads the industry in scalability and performance to quickly and accurately correlate security events and forward them for additional analysis by information security analysts in our Security Operations Centres (SOCs). Leveraging intelligence from our Threat Intelligence team, thousands of devices under management, and our unique position in the Australian marketplace with over 200 MSS clients, our highly trained analysts are able to more quickly identify evolving threats and provide more detailed and actionable data to our customers.

earthwave supports the largest portfolio of commercial and open-source security products with our vendor-neutral device management and monitoring, alerting and reporting via earthport. Our security analysts use proven processes and best-of-breed technologies to provide lifecycle management and device monitoring for enterprise security. Our Security Device Agent (SDA) acts as an intrusion detection sensor and vulnerability scanner, normalising, prioritising and de-duplicating data before sending it from the customers premises to our SOC analysts.

An important element of the SDA is data aggregation strategy which is a complete, 100% capture of the status, alarms and alerts from the various firewalls, intrusion detection systems and other relevant sources that are being monitored, no matter what topology of agents and centralised collectors is used. This means that every field from every event is available for real time correlation, display, investigation and reporting.

In addition to doing the raw data collection, the earthwave SDA normalises every alarm and alert into a common security schema, filters out unwanted traffic, sets severity according to a common taxonomy and intelligently manages bandwidth to minimise network traffic.

earthwave's breadth of services are unmatched in the industry with over 20 Managed Security Services, Security Consulting, Secure Internet Gateway and Secure Hosting providing all the services necessary to meet your security needs.

Request more details