We help you protect customer data with our unique inside-out network-security approach of "extrusion prevention".

Data security challenges

• Perimeter network defenses defend against well-known vulnerabilities such as XSS attacks but can not mitigate the threat of data breaches due to trusted insiders.
• You are VP IT for a telecom service provider with valuable customer data or security officer for a technology company - the board wants you to measure and reduce the cost of your PCI DSS and Sarbanes-Oxley risk controls.
• You already have content filtering, firewall and IPS and you're looking into Web application database security technologies - but you're not sure how cost-effective all these new technologies will be for you.
• Your CEO does not find well-publicized security breaches sufficient reason to become a security leader and approve your ideas for extrusion prevention because:
  • He usually receives conflicting proposals for new information security initiatives with weak or missing financial justifications.
  • The recommended security initiatives often disrupt the business.

What we do

We can help you reduce your data security costs with our practical 7 step process that is driven by you and your team. We start with an assessment of assets, threats and vulnerabilities.

• Step 1 - Assess your assets and valuate them
• Step 2 - Assess and mitigate three classes of threats:
  • Extrusion: Unauthorized transfer of data from sources inside the network to external destinations.
  • Data abuse: Unauthorized access to data by an internal network user. Data abuse can result from abuse of privilege, elevation of privilege or problems with enterprise Identity Management systems.
  • Network abuse: Violation of AUP (accepted usage policy); for example operating P2P applications or sending large multimedia files from inside the network.
• Step 3 - Assess your vulnerabilities
• Step 4 - Assign countermeasures in all three IT vulnerability dimensions:
  • People: Trusted insiders that may transfer data by mistake or on purpose.
  • Workstations: that may be compromised by Trojans or custom spyware; often injected by means of social engineering such as CD-ROM distribution to employees.
  • Server applications: Systems that may be compromised by insiders or external hackers.
• Step 5 - Build the financial justification for the economic decision maker. The output of our practical threat analysis process is a financial justification for an effective risk mitigation plan. The plan includes the most cost-effective countermeasures that reduce the risk level to a minimum at a given capital and variable cost.
• Step 6 - Approve implementation plan
• Step 7 - Implement the countermeasures