Our Enhanced Managed Security includes an additional, advanced layer of Ransomware and intrusion protections. These are Advanced Endpoint Protection as well as a Network and Compliance SIEM service for organizations that have HIPAA, PCI-DSS, or NIST 800 regulation compliance requirements. Both are monitored and supported by a 24 x 7 Security Operations Center (SOC) that alerts, mitigates, and remediates intrusions and attacks. These tools work in conjunction with our basic security software from Webroot and Cisco Umbrella. No additional hardware is required.
The New Tools And Services
Advanced — Endpoint Protection
- Comprehensive endpoint monitoring and protection to identify and stop active threats
- Complete 24×7 SOC support to enable rapid action, analysis and remediation of events
- File scanning, AV/malware detection, threat intelligence integration and forensics
- Ability to effectively remove all traces, footprints and record of an attack
- Immediate rollback and recovery capabilities for destructive attacks like ransomware
- $1M ransomware warranty to provide unparalleled confidence and peace of mind
Network & Compliance
- SIEM with Real-time Alerting, Attack Mitigation, and Remediation/Recovery steps
- Full network log and activity monitoring
- 24×7 SOC search and forensic analysis of events
- Log Management capabilities
- Meets Log management and threat analysis requirement for regulatory standards including PCI, HIPAA, and NIST 800
- Compliance audit & adherence content and reports
- Automated Remediation
Both of these are supported by the Security Operations Center (SOC), which is staffed by CISSP Certified Engineers, including DoD, FBI, and NSA trained threat analysts.
Detect & Respond — Security Operations Center (SOC)
SOC Provides Mitigation to Avoid/Reduce Harm
- Takes available steps to stop harm from occurring
- SOC recommends basic response actions to minimize immediate harm across environment
SOC Investigates Event to Provide Context
- Understands the scope and related activities to that event
- Determine active threats from false positives
SOC Alerts Paladin IT of Security Events
- SOC provides analysis to determine if an event has occurred when SOC learns of possible indicator
Remediation Services
- Scrubbing systems of remnants of an attack
- System rollbacks to restore access to data and applications