Current IBAT Endorsed Services
Managed Network Intrusion Prevention and Detection Service
SecureWorks provides proactive management and real-time security event monitoring and analysis across your network intrusion prevention and detection infrastructure. SecureWorks’ award-winning Network Intrusion
Prevention and Detection Service can support your current and future best-of-breed environment, as well as provide you with superior protection in a cost-effective technology and service bundle using our iSensor IPS appliance. Features of this service include:
24x7x365 real-time monitoring by 100% GIAC certified security experts
Real-time blocking of malicious Internet activity before compromise
Proactive administration, signature tuning and maintenance
Countermeasure deployment based on our industry-leading threat visibility
On-demand security, board-level and compliance reports
Firewall Management Service
SecureWorks provides 24x7x365 management and monitoring of your firewall and gateway appliance infrastructure. Our experts provide scoping, deployment, policy configuration and ongoing management of supported firewall devices. This service includes:
Site assessment and firewall policy design
Firewall installation, configuration and maintenance
Total lifecycle management including performance and troubleshooting
24x7 firewall monitoring to detect known and unknown threats
Concise easy to understand reporting
Managed Host Intrusion Prevention
Our Managed Host Intrusion Prevention Service protects your network from attacks that can damage applications, data, or the underlying operating system. This service delivers protection at the host level by blocking behavior that signals malicious activity. This service includes:
Real-time behavior-based attack blocking
Protection against attacks that bypass perimeter security
Policy set management, automatic updates and all other maintenance
24x7x365 real-time monitoring and response
2
Encrypted Email
Whether driven by regulation or simply good security practice, encrypting data in transit is an important part of corporate security. SecureWorks' Encrypted Email Service provides airtight security for email messages without burdensome processes for email administrators or end-users. This service:
Automatically encrypts email using centralized policies
Ensures that end-users do "business as usual" and do not require extensive training
Allows recipients to open encrypted email from a secure portal
Provides reports for operational oversight and compliance readiness
Security Monitoring Service (Can be IPS, IDS, FIREWALL, SERVER/NETWORK, VPN, etc…)
SecureWorks’ Security Monitoring Service provides 24X7x365 vigilance over your critical information assets. SecureWorks’ Security Analysts will monitor, analyze and respond to security events from security devices, network infrastructure, servers, databases, applications or any other critical information asset in real-time. Service features:
Expert analysis by our 100% GIAC certified team of Security Analysts
Vendor neutral, infrastructure-wide coverage
Real-time, 24X7 monitoring, correlation and incident response
On-demand security and compliance reports through our real-time client Portal
Security Information Management Service (SIM On-Demand) (Can be IPS, IDS, FIREWALL, SERVER/NETWORK, VPN, etc…)
SecureWorks’ SIM Service allows organizations to attain all the benefits of traditional SIM software, without experiencing any of the drawbacks. SecureWorks’ SIM Service delivers event aggregation, correlation and reporting “in-the-cloud,” requiring no lengthy software implementations. The SIM service can be up and running in a matter of days, immediately presenting you with actionable information, a consolidated view of the security status of your critical assets and on-demand compliance reports via the secure web-based SecureWorks Portal. Service features include:
Rapid implementation and no management overhead
Vendor neutral, infrastructure-wide event aggregation and advanced correlation
Asset classification, remediation workflow and 24x7 access to our security experts
On-demand security and compliance reports through our real-time client Portal
Vulnerability Scanning
SecureWorks' Vulnerability Scanning Service identifies exposures and weak spots within your network through powerful internal and external scanning. As a client-driven service, you have full control of scanning parameters and scheduling through the SecureWorks Portal. Service features include:
Internal and external scanning
Scanning of all 65,000 ports (not just the first 16,000)
Prioritized remediation and trending information
On-demand security and compliance reports
Integration with Qualys Vulnerability Management System
Professional Services
SecureWorks' Professional Services provide expertise and analysis to help you improve your security posture, facilitate compliance, and improve operational efficiency. With deep experience in GLBA, HIPAA, Sarbanes-Oxley, and NERC compliance, our security professionals identify risk and prepare you for a favorable exam of your IT controls. Our Professional Services include:
Security Assessment / Risk Analysis
Physical Security Assessment
Compliance & Governance
Penetration Testing *** SecureWorks maintains independence in regards to performing Penetration Testing against a current 24x7x365 monitoring client
PCI Compliance
Anti-Phishing Services
Web Application Assessment
Incident Response Services
4
Additional IBAT Endorsed Services
Log Retention
The aggregation and storing of network and application logs for archival purposes, is essential for many organizations for both security and compliance. Many industry regulations, such as PCI and GLBA, require organizations to monitor and archive logs. Log monitoring and archival is also important for forensic investigation and network troubleshooting.
For successful Log Retention, enterprises need a solution that supports the wide range of diverse log sources present in a typical enterprise network. Flexible indexing and searching of log data is also needed to facilitate forensics and compliance reporting. To provide clients with a solution that meets and exceeds their Log Retention needs, this service includes:
Seamless Solution: Log Retention integrates seamlessly with SecureWorks’ Log Monitoring service,
delivering a comprehensive Log Management solution
Remove the Maintenance Burden: All management and maintenance of Log Retention technology is
handled by our team of experts -- from implementation to support to appliance upgrades
Portal Integration: Access Log Retention reports alongside reports from Firewall, IPS, Log Monitoring
and all other SecureWorks offerings via a single, secure portal
Threat Intelligence
SecureWorks' Threat Intelligence delivers early warnings about emerging threats and actionable security intelligence tailored to your environment, providing you with more time to protect your critical assets. Our well-recognized Security Research Group aggregates threats and vulnerabilities, accurately assesses severity levels and provides you with the steps you can take to remediate these issues before they impact your organization. Service features include:
Actionable information tailored to your environment
Early warnings to emerging threats
Clear, concise threat and vulnerability analyses
Remediation information
Unlimited consultation with our industry recognized researchers
PCI Scanning
SecureWorks’ PCI Scanning service provides you with a cost-effective, easy-to-use solution to support your PCI compliance. Using our service, you will be able to schedule and run scans using Qualys’ secure, web-based QualysGuard PCI service. Our security experts will then review the results and identify any issues that you need to correct for compliance purposes. Once results are satisfactory, SecureWorks will create a letter of attestation and send it to the appropriate parties to demonstrate compliance. Service features include:
Accurate scanning from an Approved PCI Scanning Vendor
Painless , on-demand report preparation and submission
Non-intrusive scans that won’t cause disruption on your network
Expert review and unlimited remediation consultation from SecureWorks’ security experts
Compliance Central
Suppliers, partners and service providers are essential to the success of today's organizations. However, these affiliates also present security and compliance risks that must be managed to protect your assets and comply with PCI, GLBA, FFIEC, HIPAA, NERC CIP and other regulations.
Service Benefits
• Reduces compliance management costs
• Automates ongoing oversight of partners, suppliers and other affiliates • Supports compliance with PCI, GLBA, HIPAA and other regulations • Streamlines audits and examinations
• Enforces consistent risk management policies and controls
Web Application Security Services
SecureWorks provides an array of web application security services to protect web applications and support compliance with PCI and other regulations. These services include:
• 24x7 monitoring of web application firewall (WAF) logs and alerts. We can monitor virtually any security technology, including any WAF Smurfit-Stone may deploy in the future.
• Web application scanning • Secure code audit