ips

Our Managed Service offering for intrusion detection and protection based on the Sourcefire solution is built on the legacy of the award-winning SNORT rules-based detection engine; Sourcefire IPS uses a powerful combination of signature, protocol, and anomaly-based inspection methods. Sourcefire appliances support throughput and line speeds up to 10 gigabits per second. The IPS sensors are deployable in both inline and/or passive modes.

Sourcefire's unique passive end-point intelligence gathering (RNA) integrated with active scanning (Nessus) provides a network defense system that unifies threat detection, vulnerability assessment, and management technologies to provide our customers with the most real-time network threat and vulnerability security detection system available.

The highlights of our managed service offering for intrusion detection and prevention include:

• Access to a 7x24x365 Security Operations Center with security expertise to monitor and notify of security threats in real time
• 7x24x365 Network Intrusion Detection/Prevention Services 
• IPS is responsible for the setup, configuration, tuning, day to day operational support, updates, upgrades, and incident response
• IPS works with you to develop an incident response workflow
• Monthly reports and meetings with your security team to review reports
• Ongoing configuration and tuning of IPS devices to ensure threat blocking activities are appropriate and customized to the unique traffic patterns of your network, reducing the risk of inadvertently blocking legitimate traffic.
• Periodic configuration reviews to maintain effectiveness of the IPS systems
• IPS personnel will work with you to build any reports required to be delivered as part of the overall monthly reporting

In addition, IPS currently offers the following managed services:

• Managed Firewall and VPN Services
• Managed Remote Access Services
• Co-managed Security Information and Event Management (SIEM)
• Managed Network Monitoring Services
• Managed Support Services