Managed CyberSecurity Solutions
Our custom designed Mobile Security Operations Centre and DevOps platform. Also featuring our quadcore/8 thread i7, 64GB RAM TeenySERV Duo drop-in server replacement. www.Expanscape.com
With years of experience implementing secure solutions for businesses both large and small, our security specialists are best placed to advise on and implement technologies that can take your system security to the next level. Emerging and evolving threats definitely keep us on our toes, however our continued investment in security research has allowed us to maintain an edge that many of our competitors don't have.
We don't just regurgitate vendor rhetoric and "hope for the best" like others.
Our specialists, with permission from the associated vendor where applicable, periodically pentest all solutions that feature in our Cyber Security solution portfolio. This provides threat management and attack vector insight which allows us to independently and impartially ensure you get the best and most secure solution.
We deploy a variety of cyber security solutions that function at various stages of the data life cycle. We employ a multivendor and bespoke solutions strategy. We will always advise on the best solutions to meet your specific needs.
Our main managed Cyber Security solution portfolio is based on several specific areas:
Data in transit
Multi Vendor VPN
Our specialists have extended experience setting up secure tunnels in multi vendor environments to ensure data in transit meets compliance objectives.
Hosted/Colocated Server security
We can ensure that data is transmited from all your points of presence securely
VPN path aggregation and Priority
We can provide resilience, aggregation and packet priority using bespoke solutions and solutions from our SD WAN portfolio.
Data at rest
On Premise, Cloud storage and SaaS
We can help you to meet compliancy objectives for PII and Generic Data storage using a variety of solutions.
Employee BYOD Strategy
We can help you to ensure data on employee tablets, phones and laptops is stored securely and feature access control. We can help you to implement a demarcation point for your employees BYOD devices that ensures that corporate data and peronsal data cannot intermingle.
Bespoke Security Solutions
Custom designed system bahavioural analyis tools
We can create customised bespoke solutions that can generate alerts when a very specific pattern of activity is detected in your infrastructure no matter how geographically disparate your infrastructure is.
Byte Iron ERP
Byte Iron have created a bespoke ERP/CRM solution with a very specific security topology. The business logic side of our ERP/CRM lives local to your business with the data encryption happening client side on prem. Our ERP/CRM data storage and archiving can be achieved with a variety of cloud vendors or on our prviate cloud platform and no unencrypted data ever leaves your premises. (Our ERP/CRM solution will be available around Q4 2020)
Employee BYOD Strategy
We employ a variety of bespoke "in-house" security solutions for data life cycle management.
Customised Access control
We can create customised solutions that provide visibility of network devices, appliances and services that dont' have these feautures by default. We can create and provide customised dashboards that link to your existing APIs and solutions.
Zero Trust Networks
Network Access Control solutions
With a multivendor approach to NAC solutions we can help you to ease configuration and testing while ensuring that your objectives are met.
Network Path authorisation
Once authenticated and authorised for specific network access a network security policy is required to ensure that packets can only reach authorised Servers/Services/APIs and all other connection attempts are logged and blocked. We can help you to define a framework and optimal path for device access to allocated internal resources while ensuring everything else cannot be accessed.
Server/Service/API access authentication and authorisation
We can also help you to ensure your servers, services and APIs are configured to block unauthorised connection attempts.
Data Loss prevention
Data Loss Prevention Solutions
We employ a vendor agnostic approach to existing DLP solutions which means you get the best solution that matches your needs
Trend Analysis
Our managed DLP solutions utilise trend analysis to build a baseline picture of your network environment. This is then determine when unusual activity is detected on your network.
DLP in Existing products and services
Most software and SaaS solution do now have some level of DLP but in most cases it is disabled. We can identify, configure and manage this process for you.
AI and Machine Learning based Security Event Analysis
Trend Analyis and Anomaly detection goes AI in a major way!
There are now 3 major technology solutions that we trust that offer network insight and AI enhanced trend analysis on your network infrastructure. This excitng prospect means that it's harder for threats to hide in your network. We offer a service whereby we will help to configure the solution and respond and apply SIEM according to a predefined SLA agreed with you.
Onsite Supprot
Where serious anomalies are detected we will also send one of our infosec team members to site to further investigate, aid remediation processes and to facilitate incident documentation.
False positives
Due to our experience supporting the 3 major platforms we can help to identify false positives as well as help fine tuning the solution.
Single Signon
Federated authentication for all your applications
The SSO solutions we deploy allow you to enjoy a customisable user experience as well as access to well known user and directory stores.
Vendor agnostic indentity providers
The solution we manage and support allows you use well defined and identity providers as well as customised solutions uing the SAML language.
Reporting
The SSO solutions we deploy and manage incorporate industry leading real time security reporting and geoloctation tracking.
Multi-Factor Authentication
Secure
The chosen MFA solutions we deploy allow your business to authenticate, employees, partners, contractors in a secure way.
Simple
The chosen managed service MFA solution keeps you doing business without interuptions. We are happy to manage all user creations, moves and changes as per a predifned SLA agreed with you.
Inteligent
Our chosen MFA solutions allow you create inteligent policies based on login context that can limit identity challenges to risky login attempts.
Privileged Access Management
Secure Auditable Systems Access
Our chosen PAM solution allows your business to allow access to specific areas of your system with pre-defined limitations on how and specifically what resources are accessed.
Time of Day access
You can designate specific times for access and enforce different security policies for different times of the day.
Resource Visibility
Limit resource visibility with strict account segregation and access control. This includes for example only allowing access to specific commands to superusers on the linux command line.
Vendor Agnostic
Our chosen PAM solution includes support linux command line, Generic SSH Sessions, windows, routers/switches/firewalls, proxies, loadbalancers and wireless lan controllers. (this list is not exhaustive). It can also be customised for specific device types.
Recording/Playback of PAM session
Our chosen PAM solution allows you to record and playback sessions at will.
Compliancy
Comply with specific regulation requirements with access control, monitoring, and audit capabilities (GDPR, NIS, ISO 27001, HIPAA, PCI DSS, etc.)
Behaviour Analytics and Insider Threat Assessment
Social Engineering
We can help you to raise awareness and improve staff engagement with security awareness material
Threat Assessment
We assist you with insider threat assessment and help to provide remedial ooutcomes in adverse scenarios.
Traing and metrics
We can provide a data rich report about your staffs attitudes to Cyber risk via our bespoke online surveys.
Breach and attack simulation
Red Team Ops
In order to create the most robust defensive security posture, an in depth understanding of Offensive security techniques is crucial. We can help you to identify potential attack vectors with an onsite survey and examination of your information security policies. We identify flaws in your defensive posture and demonstrate how a potential adversary could compromise your operations including lateral movement via compromised resources.
Blue Team Ops
We can simulate an attack scenario in an air gapped area of your infratructure and demonstrate identification of threat and real time defensive techniques that can be used to contain the threat and reduce potential damage.
Logging and Metrics
We can also implement IDS solutions that show you potential attacks in real time and how to implement remedial techniques.
Web Application Firewalls
WAF implementation
We implement a WAF best optimised for your framework and provide monitoring services with a predefined SLA
Rule optimisation
We identify false positives and help you to optimise the WAF rules for effective protection.
File Integrity Monitoring
Instant file anomaly detection
One of the first things a hacker or virus does after comprimsing a web facing server is to modify your websites files so that other visitors to the site can also become compromised. Having snapshot of the hash of each web facing file on the server is instrumental in detecting vulnerabilities.
Instant file anomaly alerts
Now you can get alerts on file integrity from all your web facing resources allowing you time to quickly disable the resource to effect remedial processes.
Bespoke solutions
We also create custom FIM solutions that can integrate with your existing SIEM solutions.
Disaster Recovery - Business continuity Solutions
Warm/Cold site setup
We can help you to identify key elements in your system topology for replication to your designated disaster recovery site(s). We can also help you to implement secure automatic replication of core services and data
Warm/Cold site Testing
We can also complete testing and signoff of each element in your DR site. We will also enable monitoring and remediation according a pre-defined SLA.
Drop-in servers and Mobile DR solutions
We have developed the Aurora 7 a mobile Security Operations Center and the TeenySERV DUO a drop-in server solution. Both solutions have been designed to provide aid in adverse circumstances and allow you to setup shop anywhere. Find out more about our mobile DR solutions at www.Expanscape.com
Our managed Information Security solutions can replace, improve or complement existing security solutions in your organisation.
Contact us today to learn how we can help you secure your environment.
Contact us