earthwave | the real-time threat management company

Managed Network & Host Intrusion Detection & Prevention Services

Challenge

On the Internet, network intruders are well travelled. They come from outside the enterprise, attacking Internet connections, altering Web pages and launching denial-of-service attacks. They also originate from inside the network, casting sophisticated assaults that can circumvent or pass through firewalls, transmitting confidential information or illegally modifying network access privileges. While many organisations deploy firewalls as their central gatekeepers to prevent unauthorised access, firewalls alone are not sufficient protection for networks or servers. A layered defence provides the best results.

Solution

Earthwave's Network and Host Intrusion Detection & Prevention Services monitor your network and server traffic for intrusions that may occur on critical segments and servers of your infrastructure. Essentially, earthwave watches for tell-tale signs of attack and abnormalities in network traffic that may signal an attempted intrusion.

To protect your system from these types of threats, earthwave experts will work with your technology staff to understand which areas of your network are strategic to your company. We use this information to architect a solution to best secure your company by placing sensors on these networks and servers, which listen for suspicious activity and maintain constant communication with our 24x7 Security Operations Centre. If we detect suspected attack activity, our operators launch notification, escalation, and remediation recommendations. These activities are tailored to your environment and the expertise of your technology staff.

As the security landscape is constantly changing, earthwave has assembled a team of security experts to constantly upgrade our technologies and response strategies. Our extensive security resources and partnerships allow us to develop a robust knowledge base of security information. We continuously push this knowledge to our customers in the form of updates, so they can maintain up-to-date protection from malicious activity. Examples of the activities we watch for are:

Backdoor Signatures - Hidden software or hardware mechanisms that circumvent security controls
O/S Exploits - Attacks specific to the operating system
Scans/Probes - An effort to gather information about a machine or its users in order to gain unauthorized access to the system at a later date

Denial of Service Attacks - Inundation of hardware or a website with requests in order to deny legitimate parties access.
Virus-Related Activity - Anomalous network traffic resulting from a virus outbreak
Internet Service Exploitation - Attacks that are specific to Internet related services (Finger, FTP, NETBIOS, SMTP, TELNET, ICMP)

Earthwave Managed Network and Host Intrusion Detection & Prevention Services is a turnkey, vendor-neutral managed solution. Built on commercially supported best-of-breed products, Managed Network and Host Intrusion Detection & Prevention Services is managed, monitored and maintained by experienced security analysts 24x7x365, and completes perimeter security without the risks or the challenges of doing it internally.

Supports solutions from leading providers such as Cisco, McAfee, Tipping Point, Juniper Netscreen, Fortinet, IBM ISS, Snort, SourceFire, Fortinet and 24x7 monitoring and support - earthwave's state-of-the-art Security Operations Center (SOC) maintains constant vigilance for your perimeter security.

Earthwave offers four Service Level options with distinct, quantifiable Service Level Agreements (SLAs) to best meet customer needs and address support level preferences. These unique tiers provide different levels of response time, report content and frequencies, and data storage. Our Security Posture 1 and 2 packages offer excellent service tailored for less complex infrastructures that require basic support, while Security Posture 3 and 4 packages offer customers with complex and stringent requirements a host of customisations, extra features and extra functionality. And remember, subscribing to Managed Intrusion Detection & Prevention Services does not require purchase of hardware or software, study of technical manuals or constant updating of your systems.