IDS/IPS | INTRUSION DETECTION AND PREVENTION

WHAT IS INTRUSION DETECTION AND PREVENTION?

A diverse infrastructure with many business applications can be challenging with keeping all software up to date and patched.  RedLegg’s Intrusion Prevention Service protects networks from both known and unknown threats, blocking attacks that might otherwise take advantage of network vulnerabilities and unpatched systems. 

RedLegg works to fully understand your network, segmentation needs, and access requirements to help service our clients.  RedLegg’s IPS service offers industry-leading technology providing critical protection of networks from evasive and advanced attacks at the application layer.  Analysis using contextual information and behavior prevents unknown, zero-day attacks from damaging critical digital assets and services.

SIEM-Pillar-Banner

Pretty much everything you'd need to know about co-managed SIEM. 

LEARN MORE

SECURITY OPERATIONS CENTER

Managed Security Services are implemented and delivered by the RedLegg Security Operations Team.

24X7 SUPPORT:

The RedLegg Security Operations Team is available 24x7 for customer support, in your time zone.

MONITORING:

RedLegg’s Security Operations Team enables monitoring and alerting for your on-premise equipment, based on your pre-defined escalation procedures.

TICKETING:

The ticketing system is available online to track all cases, and a customer portal is available as well to check the status of tickets.

ALERTING:

For threat detection services, RedLegg will configure automatic alerts based on pre-determined criteria or critical services.

IPS MANAGEMENT

  • HEALTH AND PERFORMANCE
  • AVAILABILITY AND OUTAGE NOTIFICATIONS
  • PATCH AND SOFTWARE UPDATES
  • POLICY MANAGEMENT
  • POLICY BACKUP

HEALTH AND PERFORMANCE

Appliance health and performance is monitored by RedLegg operations.  In the event of a system or performance issue, the RedLegg SOC is notified for investigation.

AVAILABILITY AND OUTAGE NOTIFICATIONS

Availability of the equipment is monitored 24x7.  If the device becomes unreachable, RedLegg SOC staff will begin investigation of possible network connectivity issues.  You will be notified using the escalation procedures established in our Data Gathering Form.

PATCH AND SOFTWARE UPDATES

When new software or signature updates or patches are available, RedLegg staff will schedule with you a maintenance window to perform the updates.

POLICY MANAGEMENT

RedLegg’s staff of security experts works with you to build a secure IPS strategy that allows your business access to the resources it needs while providing the best security for your networks.

POLICY BACKUP

Regular backups are made to the configuration policy.  In the event of a recovery or a necessary rollback, they will be available.

  • HEALTH AND PERFORMANCE
  • Appliance health and performance is monitored by RedLegg operations.  In the event of a system or performance issue, the RedLegg SOC is notified for investigation.

  • AVAILABILITY AND OUTAGE NOTIFICATIONS
  • Availability of the equipment is monitored 24x7.  If the device becomes unreachable, RedLegg SOC staff will begin investigation of possible network connectivity issues.  You will be notified using the escalation procedures established in our Data Gathering Form.

  • PATCH AND SOFTWARE UPDATES
  • When new software or signature updates or patches are available, RedLegg staff will schedule with you a maintenance window to perform the updates.

  • POLICY MANAGEMENT
  • RedLegg’s staff of security experts works with you to build a secure IPS strategy that allows your business access to the resources it needs while providing the best security for your networks.

  • POLICY BACKUP
  • Regular backups are made to the configuration policy.  In the event of a recovery or a necessary rollback, they will be available.

OUR APPROACH

RedLegg is an innovative, global security firm that delivers managed cybersecurity solutions and peace of mind to its clients.

RedLegg’s approach to information security protects the confidentiality, integrity, and availability of critical data based on a sound risk management framework. This approach allows organizations to engage business owners in defining acceptable levels of risk and to participate in the process for evaluating threats.

RedLegg’s ARMEE (Assess, Remediate, Monitor, Educate, Enforce) methodology institutes a lifecycle that allows for an ongoing process to continuously improve the security posture of the organization. This methodology is designed to be portable to all business, legal, regulatory, and security requirements of the organization. It is flexible enough to account for the constant flux in the market place, attack vectors, and protection mechanisms.

The final step in RedLegg’s ARMEE methodology is to implement solutions that enforce security measures needed to protect against threats that may affect an organization’s core business.

ARMEElogo-1

Resources

     
MSS-Monthly-Sample-Report

 

MSS-Slick-3D

 

Case Study_SIEM-International-Law-Firm-SOC-3D-1

 

SIEM-Architecture-Review

 

MSS Monthly Report Sample Managed Security Info Sheet Managed Security Case Studies SIEM Architecture Review

 

BETTER YOUR VISIBILITY.

Better defend your network.

REACH OUT