MANAGED SECURITY SERVICES. Expert management of infrastructure, network, and application security

Transcription

1 MANAGED SECURITY SERVICES Expert management of infrastructure, network, and application security

2 2 / 16 MANAGED SECURITY SERVICES Managed Security Services from Sungard Availability Services Managed Security Services delivers expert management of the design, implementation and operation of enterprise-wide security programmes. With flexible service options customised to your security needs and budget, we work with you to build an IT security posture that mitigates network complexity and minimises threats. Advanced expertise to optimise data security and business efficiency. Enterprise-class infrastructure that s secure, highly reliable and continuously updated. High availability backed by cast-iron service level agreements (SLAs). Operational excellence with data centres and processes that support a broad range of general and industry-specific regulatory compliance requirements. Comprehensive, fully customisable solutions that support businesses of all sizes across a variety of industry sectors. Cost-effective service delivered in an OpEx model to help you avoid costly capital expenditure. Proven expertise Sungard AS Managed Security Services are available for a broad range of security and compliance needs managed at one of our enterpriseclass data centres but supporting your infrastructure regardless of its location. With Managed Security your infrastructure and applications are protected by industry-leading technologies and managed by certified security experts with extensive experience in design, implementation and operational support for some of the most complex network environments. Our in-house professionals work with carefully selected partners, each a leader in their specialist field, to support global customers. We take a multi-layered approach to security designed to protect every level of your IT infrastructure. Our extensive services include Distributed Denial of Service Mitigation, Managed Firewall and VPN services, Managed File Integrity Monitoring, Managed Web Application Firewall services, Log & Threat Management (Intrusion Detection) services, and Information Security Consulting Services. It s a highly effective strategy we call defence in depth. Regulatory compliance and operational excellence Sungard AS Managed Services UK data centres are certified to the ISO standard and the majority are included in our annual ISAE 3402 Type II (formerly SAS 70 or SSAE 16) audits. As you would expect, service delivery is based on the ITILv3 best practices framework. We are experienced in working with the most complex infrastructures and deployments and support our customers to achieve PCI DSS compliance, whether they have a physical, virtual or hybrid environment. Under our Lot 4 accreditation we have developed specialist managed secure cloud solutions that support both PCI DSS requirements and the OFFICIAL security classification (formerly known as IL2 and IL3 ) for UK government data. Strengthened security with reduced cost and complexity Business must continue to balance risk against the balance sheet. Evolving your security posture while optimising your infrastructure is key to business success. By allocating your resources to focus on strategic initiatives while adopting a CapEx model to support IT operations and maximise your IT investment. Managed Security Services from Sungard AS gives you the confidence that comes with a service level guarantee, rapid incident notification, simplified compliance reporting and expert advice on tap.

3 MANAGED SECURITY SERVICES 3 / 16 Expert management of infrastructure, network and application security

4 4 / 16 MANAGED SECURITY SERVICES Protect your business from a growing threat A Distributed Denial of Service (DDoS) attack will bring down an organisation s website by exhausting the infrastructure, most commonly by filling the internet pipe or establishing excessive bogus sessions with firewalls and servers (typically DNS and web servers). This downtime can result in significant costs through loss of an e-commerce presence, degraded systems efficiency, lost revenue, loss of customer trust, a falling share price and reputational damage. This type of threat was unforeseen when internet architecture was originally built and, consequently, almost all internet services are vulnerable to DDoS attacks. More than 7,000 DDoS attacks are launched daily and their size and sophistication is increasing. A relatively new variation of DDoS threat has become particularly prevalent reflection and amplification attacks, which have risen by 68% year-on-year 1. When the web is a key revenuegenerating source the cost of downtime resulting from a DDoS attack can quickly escalate to six or seven figure sums, meaning DDoS mitigation is no longer a nice to have but a fundamental requirement. It can make the difference between your firm being available to do business or being suddenly taken off air for minutes, hours or even days. Sungard AS offers customers a proven DDoS mitigation solution that has a 100% track record* in mitigating detected attacks. How it works We first profile the customer s IT estate to build a picture of normal use so we can identify within minutes when an attack is underway. At the first sign of unusual activity patterns internet traffic is automatically diverted to a clearing house where it is scrubbed clean before being re-routed back to the customer. We are able to employ over 30 different techniques to deliver custom mitigation templates tailored to each client and threat level. Service features Legitimate traffic continues to reach website when it is under attack 24/7 manned Security Operations Centre (SOC) 15 minute SLA to mitigate attack minimises impact Multiple redundant scrubbing centres for enhanced resilience Scalability to mitigate large volume attacks Data remains within UK borders avoiding latency issues Managed service no CapEx requirement Full reporting on attacks at all levels. A Distributed Denial of Service (DDoS) attack is designed to flood a computer with so many messages it is unable to function. Sungard AS s provides vital protection against this growing threat. 1 Source: Global DDoS Attack Report 2014 Akamai Technologies. * At time of print.

5 MANAGED SECURITY SERVICES 5 / 16 Strengthen your first line of defence Sungard AS Managed Firewall and VPN Services provide customers with state-of-the-art protection against internet and hostile network attacks. The advanced, fully-outsourced firewall protects key information assets across networks, hosts, applications and databases. Client and site-to-site Virtual Private Networks (VPNs) provide a shield against hostile attacks from inside or outside the network. Typically, after implementing a firewall the majority of organisations then leave its rule base largely unchanged, which means it can be difficult to build up essential firewall skills in-house. Outsourcing this responsibility to a trusted partner who keeps pace with the latest security threats and vulnerabilities makes sound business sense. Managed Firewall and Virtual Private Network Services from Sungard AS is the essential first line of defence against increasingly sophisticated denial of service attacks. The secure, low-cost solution provides a full suite of security measures to prevent unauthorised access to your network. Over and above the services outlined in this brochure Sungard AS employs a variety of recognised techniques such as Demilitarised Zones (DMZ) and dual skinning firewalls to provide targeted protection for the different layers of your IT architecture and mitigate risks more effectively. We take a holistic approach that incorporates geographically dispersing workload to minimise the risk of single siting. The same principles apply to content and application distribution services, anti-virus and patch management to ensure your IT infrastructure is always available and protected against the latest threats. Serving as a barrier to hostile attacks, Managed Firewall and VPN is a primary element of any security solution. With a fully Managed Firewall and VPN Sungard AS s security specialists become an extension to your own IT team. Sungard AS provides management, monitoring, reporting, critical patch updates and resolution of Managed Firewall services. The combination of our vendor-neutral approach and fully managed service makes this a cost-effective, affordable solution for companies of all sizes. Service features Up to 5 site-to-site or remote-access VPNs per managed firewall 24/7 monitoring, reporting, critical patch updates and resolution Event logs viewable for 2 days with 30 days available upon request. This service permits, denies, encrypts, decrypts or proxies all traffic entering and leaving your security domains and can help prevent downtime caused by an external attack.

6 6 / 16 MANAGED SECURITY SERVICES Fend off attacks before they impact your business (or Key benefits MFIM) eliminates the need for manual, error-prone, and resource-intensive compliance policies that are often associated with Sarbanes-Oxley (SOX) or PCI DSS mandates. It enables the building of an automated IT control framework in which all the information required to verify compliance is available in a single reporting system. Changes relating to authorisations can be validated automatically. Emergency fixes and other out-of-process changes are automatically documented and reconciled for easier audits. Easy setup and low initial and ongoing operational overhead Negligible memory usage No file scanning that could impact system performance Detailed reporting Vulnerabilities can be triaged by risk with risk levels assigned by the user Auto discovery of files in order to identify forgotten files or servers Flexibility in scheduling and specifying the rescanning period. Sungard AS s security professionals work with you to build a customised protection strategy that ensures maximum effectiveness with minimal disruption to business operations.

7 MANAGED SECURITY SERVICES 7 / 16

8 8 / 16 MANAGED SECURITY SERVICES

9 MANAGED SECURITY SERVICES 9 / 16 Web application-based attacks continue to outpace all other network threats. Safeguarding environments from web-based threats Companies across Europe are particularly vulnerable to cyber attacks with hackers using the region as a testbed for malicious software ( malware ) before deployment across the globe 2. Traditional IT security does not do enough to protect against internet-based attacks. Sungard AS, along with other information security professionals, recommends organisations pursue what s known as a security in-depth strategy, implementing security measures at every layer of their IT infrastructure applications, network, host and base infrastructure. There are numerous security tools on the market today including web application firewall (WAF) technology. Sungard AS s Managed Web Application Firewall (WAF) inspects incoming traffic and intercepts attacks before your applications or data are compromised. It safeguards website and business-critical applications from threats such as SQL injection, cross-site scripting and OS command injection, as well as other emerging threats and zero-day exploits. The service also makes it easier to demonstrate compliance with industry standards such as PCI DSS 6.6 and regulatory requirements. With Managed WAF, Sungard AS eliminates the need for capital expenditure, ongoing maintenance and platform or software updates. As a scalable service, when your network environment grows your protection grows with it so there is no need to plan for future growth. With this offering predictable budgeting can become a reality. Many organisations are finding it increasingly difficult to configure, monitor and mitigate threats in their network environment because of the complexity of these security applications and the sheer number of solutions being installed. Add to this mix the frequent changes that occur in a typical production environment and you have the perfect conditions for an oversight or vulnerability to be exploited. Sungard AS s Managed WAF offering provides 24/7 monitoring and incident escalation by certified security analysts, along with ongoing tuning and management of the WAF, freeing you to focus on what is core to your business. Key benefits Proven protection against web application attacks Supports compliance requirements such as PCI DSS 6.6 Can be implemented on-premise or in hosted environments Always-on provisioning, configuration, monitoring and incident escalation. LEGITIMATE USER How it works: process flow ATTACKER Network Firewall Web Application Firewall Web Servers ATTACKER 2 Alert Logic: Cloud Security Report Spring 2014

10 10 / 16 MANAGED SECURITY SERVICES Stay compliant and defend your data Sungard AS s Log and Threat Management Services detect threats and defend networks and missioncritical data from security breaches and attacks. By using Sungard AS to manage your IT security you avoid the cost and burden of complex security and monitoring systems. Instead, you receive robust protection from a security operations centre staffed by experts in attack detection and mitigation. Our security professionals monitor and analyse threats 24/7 from Sungard AS s cutting-edge, highly resilient UK technology centres. These regularly undergo rigorous inspections by external auditors and comply with recognised industry standards including ISAE , ISO 9001, I SO 27001, IGSoC and BS The Sungard AS Log and Threat Management service is backed by a 99.9% availability service level agreement for added reassurance and any incidents are reported to your in-house security team within 30 minutes or less. As a subscription-based service, you have access to the latest software and signature databases, software and hardware upgrades, maintenance and patches. An OpEx payment structure enables rapid implementation and scaling as needed with easy deployment in on-premise, off-premise and hybrid environments. Threat Management Sungard AS Threat Management is a comprehensive services package designed to address your regulatory requirements. It layers vulnerability scanning and assessment on top of intrusion detection. Threat signatures and rules The Sungard AS intrusion detection system signature database contains more than 45,000 signatures, with new signatures updated weekly and in real time. The rule set used to identify threats is consolidated from multiple sources using open-source, third party collaboration and custom rule creation. Vulnerability assessment With unlimited internal and external scans and broad scanning capabilities, your network infrastructure, server infrastructure and business-critical applications are comprehensively analysed. Combined with built-in intrusion detection capabilities, Threat Management can help maintain compliance with a variety of regulatory requirements. Log Management Sungard AS s Log Management delivers on-demand collection, storage, reporting and analysis of log data to identify suspicious activity. Log collection and parsing The log management appliance allows for agent-less collection of Windows event logs, syslogs and flat/ text tiles. The logs are parsed using a large list of parsing rules, which are updated regularly. Custom rules can be created and edited and new parsers are updated monthly from multiple sources. Event correlation and notification Log Manager and Log Review features a patented seven-factor threat model and an advanced artificial intelligence correlation system. These combine custom and out-of-the-box correlation rules to detect suspicious activity and trigger automatic alerts. PCI-specific rules are in place to help ensure compliance with Requirement 10 of PCI DSS. Sungard AS s customisable deliver the robust protection necessary to maintain continuous availability and ensure regulatory compliance. 3 London Technology Centre, Technology Centre 2 (Docklands), Technology Centre 3 (Woking) and Technology Centre 4 (Elland).

11 MANAGED SECURITY SERVICES 11 / 16

12 12 / 16 MANAGED SECURITY SERVICES Control access to your IT environment With cybercrime a rising threat worldwide today, a password alone does not provide adequate protection. (or 2FA as it s commonly known) adds a second level of authentication before access is granted. requires the user to have two out of three types of credentials before being able to access a system or sensitive data. The three types are: Something they know, such as a Personal Identification Number (PIN), password, or pattern Something they have such as an ID card, phone, or fob Something they are such as biometric information like a fingerprint or voice print. Sungard AS s service provides full management of the access environment including access configuration, complete account administration and security access control. Using best practices for security, along with monitoring for abnormal or malicious activity at the user level, provides another barrier to guard against hackers and industrial espionage. Our security experts provide a managed Two-Factor Authentication service to ensure secure remote access to your systems and confidential data for added peace of mind.

13 MANAGED SECURITY SERVICES 13 / 16

14 14 / 16 MANAGED SECURITY SERVICES Expert help on tap Sungard AS s Information Security Consulting integrates security with business strategy, helping customers to reduce risk and achieve strategic objectives. By focusing on the business value of information rather than technology tools our consultants can make the best use of resources, allocating limited security budgets to priority risks. Our goal is to make security a driver of business objectives, rather than a roadblock. Highly customised engagements result in a comprehensive security assessment, benchmarked against industry peers, together with Sungard AS s tailored recommendations. We can also help develop effective security procedures and staff training to prevent breaches. Sungard AS s can address regulatory compliance, outsourcing and broader goals for data protection and business continuity. Sungard AS s knowledgeable security specialists draw on decades of experience and best practice to help safeguard your critical systems and data.

15 MANAGED SECURITY SERVICES 15 / 16

16 About Sungard Availability Services Sungard Availability Services provides managed IT services, information availability consulting services, business continuity management software, and disaster recovery services. To learn more, visit www. or call EMEA Head Office: Unit B Heathrow Corporate Park, Green Lane, Hounslow, Middlesex TW4 6ER +44 (0) Belgium +32 (0) France +33 (0) India (+91) Ireland +353 (0) Luxembourg Sweden +46 (0) Trademark information Sungard Availability Services is a trademark of SunGard Data Systems Inc. or its affiliate used under license. All other trade names are trademarks or registered trademarks of their respective holders Sungard Availability Services, all rights reserved. CHK Connect with Us twitter.com/sungardasuk linkedin.com/company/sungardavailability-services-uk facebook.com/sungardas youtube.com/sungardavailability blog. V1:02/15