|
| Systems Security Fortification |
KEY BENEFITS
- Reduced Security Risk: More quickly identify system vulnerabilities, then manage and mitigate them.
- Tighter Regulatory Compliance: Ensure that applications, antivirus, firewalls and other system controls meet the requirements of PCI, HIPAA, and other major rules;
establish a control monitoring foundation in support of compliance and auditing initiatives.
- Concrete Savings: Eliminate manual asset discovery, configuration reviews, and vulnerability scans; reduce the costs of information security controls, processes, and resources with one centralized solution; focus security resources on the most significant risks and opportunities.
STAY AHEAD OF MALICIOUS ACTIVITIES.
Web applications and internet-facing devices and services are common gateways for malicious hacks and attacks. Flawed application code, misconfigured routers, and other vulnerabilities can expose sensitive business systems to malicious activities, with serious and potentially devastating results - including loss of customer trust, lost competitive advantage, market devaluation, regulatory penalties, and business-process degradation.
Kontrol Information and Systems Security protects business assets with 24x7 surveillance, testing, and alerting for:
- Network, application, and service vulnerabilities
- Breach indicators
- Data leakage
- Security-policy infractions
More than just automated scanning, Kontrol is a robust security-intelligence solution that reduces security management costs by automating assessment, control, and remediation of potential risks to business-process performance and quality. Complementary professional security assessment services enhance Kontrol's automated functions with expert, cost-effective penetration and vulnerability testing, patch management, secure-configuration assurance, and log correlation and management.
KEY FEATURES
IT Asset & Vendor Management
Ensure effective scoping and oversight of security controls with an up-to-date inventory of known devices, applications, and services.
- IT Asset Catalog - Categorize and track business-system components by security classification, criticality, type, subnet, and other flexible criteria. Maintain up-to-date inventories of system components, dependencies, and characteristics. The IT Asset Catalog is available to IT staff from anywhere, at any time via Kontrol's secure online interface.
- IT Asset Discovery - Identify active devices and services, find unknown devices such as wireless routers, and pinpoint unused and redundant devices that represent potential security holes with ongoing automated discovery of networked assets.
- IT Asset Classification and Prioritization - Facilitate IT risk management, help-desk response, incident management, and budgeting by categorizing and prioritizing your IT assets.
Vulnerability Detection - Increase confidence in the confidentiality and integrity of operating systems, content management systems, databases, and online applications with Kontrol penetration testing and vulnerability scanning services. Kontrol employs Qualys IT security risk and compliance management solutions to detect vulnerabilities in Web applications and services to SQL injection, cross-site scripting (XSS), directory transversal, and other types of malicious attacks.
Denial-of-Service Detection - Receive instant alerts of network traffic anomalies, including network saturation and service-performance degradation, that may indicate a denial of service (DoS) attack.
Configuration Audit & Management - Define configuration baselines and ensure that discovered configuration files are consistent with internal standards, with the support of Keross expert security support personnel. Real-time alerts for configuration changes provide early warning of emergent vulnerabilities and potentially malicious activities.
Remote Patch Management - Reduce the burden of keeping messaging systems patched against known security holes. As a core service of Kontrol, Keross security support personnel will remotely apply and administer messaging-systems patches - on a regular schedule and/or as needed, based on patch criticality.
Log Analysis & Correlation - Maintain compliance with PCI and improve security oversight with log analysis for indicators of malicious activities. Automated log review can find and trigger alerts for recognized threat indicators. Kontrol's log correlation services can even compare multiple logs, providing extra vigilance for hard-to-detect security events.
Automated Service-Ticket Initiation: Improve service-support response times through automatic initiation of service tickets, based on real-time monitoring of system performance and use.
Service Ticket Management: Stay on top of reported problems, project tasks, and preventative maintenance efforts related to security and incident management with Kontrol's online service ticket management. Dashboard views and analytical reports for service performance indicators support ongoing improvement of security-remediation efforts.
System Administration
Offload routine and time-consuming security- and system-administration tasks to the experts in the Keross Security Operations Center (KSOC). Keross's cost-effective professional security services reduce the distraction of security management, letting your staff focus on core business processes and innovation.
- Recurrent and routine tasks - Let Keross take care of software patch management, network administration, scheduled software updates, access and account management, and other routine security tasks.
- Troubleshooting and incident management - Strengthen your response capabilities for discovered system and security issues. The Keross Security Operations Center (KSOC) enhances Kontrol's automated monitoring services with 24/7 diagnostic testing and live real-time technical support services.
iKon Platform Features
- End-to-End Coverage
- Robust Identity and Access Management
- Configurable Alerting
- Access-Anywhere Management Dashboards
- In-Depth Performance Analysis and Reporting
- Documentation Repository
- Secure, Persistent Functionality
EXTEND THE VALUE OF KONTROL
Komply Audit & Compliance Process Automation: Integrate Kognit performance and risk intelligence into audit workflows and documentation management.
Security Policy Review & Drafting Services: Let Keross Professional Support Staff help you draft realistic security policies that are well-aligned with end-user actions and system performance vectors.
Security Proxy Services: When you're on the road or on vacation, Keross Professional Support Staff can act as your 24/7 proxy for responding to security alerts and events. We'll act upon your predefined procedures and protocols to keep your eBusiness systems online, even when your staff is offline.
Live Expert Assistance: Keross Professional Support Staff can help you diagnose and respond to system issues by supplementing automated monitoring services with 24/7 diagnostic testing and live real-time technical support. |
|
