Computer Security and Compliance

Introduction to Progent's Security Support Services
Progent's certified computer security consultants offer a wide selection of support services designed to help organizations of any size to uncover and eliminate security weaknesses, block attacks, recover from any problems caused by a breakdown of protection, and comply with regulatory requirements for protecting information and reporting security incidents. Progent can deliver world-class guidance for key security and recovery technologies including AI-based End Point Protection and Response, Managed Detection and Response, complete system restore validation and testing, immutable backup, and off-premises backup.

Progent can provide a choice of service delivery modes:

• As-needed online and on-premises assistance billed by the minute
• On-going managed services billed at a low flat monthly rate
• Value-priced service bundles for a single security and compliance evaluation
• Emergency ransomware response. Progent will propose a bid based on an evaluation of the damage.
  (If your network has been penetrated by any version of crypto-ransomware, don't panic. Get immediate assistance by contacting Progent's 24-hour Ransomware Hot Line at 800-462-8800.)

Delivery options for Progent's on-demand support include:

• Online Security Support
  Most security issues can be handled online via a combination of phone help and an Internet connection between Progent's Technical Response Center (TRC) and a customer's computer. Progent's TRC group can deliver online security help by offering easy access to consultants with the experience and resources to resolve many of the most difficult issues quickly, keeping your service expenses low and minimizing lost productivity.
• Onsite Security Support Services
  For cases where onsite support is required, Progent can send a technical professional to major cities across the United States. Progent can also dispatch a security consultant with high-level certifications and advanced skills to any location in the U.S.

ProSight Flat-rate Managed Services for Information Assurance
Progent's low-cost ProSight suite of managed services is designed to provide small and mid-size businesses with enterprise-class support and cutting-edge technology for all facets of information assurance. ProSight managed services available from Progent include:

• ProSight Active Security Monitoring: Next Generation Endpoint Protection and Ransomware Defense
  ProSight Active Security Monitoring is an endpoint protection (EPP) solution that utilizes SentinelOne's next generation behavior-based machine learning technology to defend endpoints as well as servers and VMs against modern malware attacks such as ransomware and file-less exploits, which easily get by legacy signature-matching anti-virus tools. ProSight Active Security Monitoring protects local and cloud resources and provides a single platform to automate the entire threat progression including protection, detection, mitigation, cleanup, and forensics. Top features include one-click rollback with Windows VSS and automatic system-wide immunization against newly discovered attacks. Progent is a SentinelOne Partner, dealer, and integrator. Read more about Progent's ProSight Active Security Monitoring (ASM) next-generation endpoint protection and ransomware defense powered by SentinelOne technology.

• ProSight Reporting: Real-time Reporting for Ticketing and Network Monitoring Platforms
  ProSight Reporting is an expanding line of in-depth reporting utilities designed to work with the industry's leading ticketing and remote network monitoring applications including ConnectWise Manage, ConnectWise Automate, Customer Thermometer, Auvik, and SentinelOne. ProSight Reporting uses Microsoft Graph and utilizes color coding to highlight and contextualize key issues like inconsistent support follow-through or endpoints with missing patches. By identifying ticketing or network health problems concisely and in near-real time, ProSight Reporting enhances productivity, reduces management overhead, and saves money. For more information, visit ProSight Reporting for ticketing and network monitoring applications.

• ProSight Enhanced Security Protection (ESP): Unified Endpoint Security
  Progent's ProSight Enhanced Security Protection (ESP) services offer ultra-affordable multi-layer security for physical servers and VMs, desktops, smartphones, and Microsoft Exchange. ProSight ESP uses contextual security and modern behavior analysis for round-the-clock monitoring and responding to security assaults from all vectors. ProSight ESP offers firewall protection, intrusion alerts, device management, and web filtering through cutting-edge technologies incorporated within a single agent accessible from a unified console. Progent's data protection and virtualization consultants can help your business to plan and implement a ProSight ESP environment that addresses your organization's unique needs and that allows you prove compliance with legal and industry data protection standards. Progent will assist you specify and implement policies that ProSight ESP will enforce, and Progent will monitor your network and react to alarms that call for urgent action. Progent can also assist your company to set up and test a backup and restore solution such as ProSight Data Protection Services so you can get back in business quickly from a destructive cyber attack like ransomware. Find out more about Progent's ProSight Enhanced Security Protection (ESP) unified physical and virtual endpoint protection and Microsoft Exchange filtering.

• ProSight Data Protection Services: Managed Cloud Backup and Recovery
  ProSight Data Protection Services from Progent offer small and mid-sized organizations a low cost and fully managed service for reliable backup/disaster recovery. For a fixed monthly cost, ProSight DPS automates and monitors your backup activities and allows fast restoration of critical files, applications and VMs that have become lost or damaged as a result of hardware breakdowns, software bugs, disasters, human error, or malware attacks such as ransomware. ProSight Data Protection Services can help you protect, recover and restore files, folders, applications, system images, as well as Microsoft Hyper-V and VMware images. Critical data can be backed up on the cloud, to an on-promises storage device, or mirrored to both. Progent's cloud backup specialists can provide world-class expertise to configure ProSight Data Protection Services to to comply with regulatory requirements like HIPAA, FIRPA, PCI and Safe Harbor and, when necessary, can assist you to restore your critical information. Learn more about ProSight Data Protection Services Managed Backup and Recovery.

• ProSight Email Guard: Spam Filtering, Data Leakage Protection and Email Encryption
  ProSight Email Guard is Progent's email filtering and encryption solution that uses the technology of top data security companies to deliver web-based control and comprehensive protection for your email traffic. The powerful structure of Progent's Email Guard combines a Cloud Protection Layer with an on-premises security gateway appliance to offer advanced protection against spam, viruses, Denial of Service (DoS) Attacks, Directory Harvest Attacks, and other email-based malware. Email Guard's Cloud Protection Layer acts as a first line of defense and blocks most unwanted email from making it to your security perimeter. This decreases your exposure to external attacks and conserves network bandwidth and storage. Email Guard's on-premises gateway appliance provides a further layer of analysis for inbound email. For outgoing email, the local security gateway offers AV and anti-spam filtering, DLP, and encryption. The local gateway can also assist Microsoft Exchange Server to monitor and safeguard internal email that stays within your security perimeter. Find out more about Progent's ProSight Email Guard spam filtering, virus defense, content filtering and data loss protection.

• ProSight Duo MFA: Two-Factor Identity Authentication
  ProSight Duo is a selection of managed services utilizing industry-leading technology developed by Duo, a Cisco company, to create two-factor authentication (2FA) solutions. Two-factor authentication uses an outside-channel endpoint to confirm user identity, offering an additional level of access security rather than just passwords. This counters the majority of cybersecurity breaches such as social engineering, brute-force password guessing, and burglarized credentials. Duo's push technology can avoid wasted time and minimize frustration by permitting users anywhere to prove their identity as easily as clicking "Approve" on the authentication box on their own unique endpoint, which can be an Android or iOS smartphone, a smart watch, or other compatible out-of-band endpoint. This one-tap process avoids the requirement to open an email or text and transcribe a temporary security passcode. Learn more about Progent's ProSight Duo MFA two-factor authentication services.

• ProSight WAN Watch: Infrastructure Remote Monitoring and Management
  Progent's ProSight WAN Watch is a network infrastructure management service that makes it simple and inexpensive for smaller businesses to map, monitor, optimize and troubleshoot their connectivity appliances like routers, firewalls, and access points as well as servers, client computers and other devices. Incorporating state-of-the-art Remote Monitoring and Management technology, ProSight WAN Watch ensures that network diagrams are kept updated, copies and manages the configuration information of almost all devices connected to your network, tracks performance, and sends notices when potential issues are detected. By automating time-consuming network management activities, WAN Watch can knock hours off ordinary chores like making network diagrams, expanding your network, finding devices that require critical updates, or identifying the cause of performance problems. Find out more about ProSight WAN Watch network infrastructure management consulting.

• ProSight LAN Watch: Server and Desktop Monitoring
  ProSight LAN Watch is Progent's server and desktop remote monitoring service that incorporates advanced remote monitoring and management techniques to help keep your IT system running efficiently by tracking the state of critical assets that power your business network. When ProSight LAN Watch uncovers a problem, an alert is transmitted automatically to your designated IT management staff and your Progent consultant so any looming problems can be addressed before they can disrupt your network Find out more details about ProSight LAN Watch server and desktop monitoring services.

• ProSight Virtual Hosting: Hosted Virtual Machines at Progent's Tier III Data Center
  With Progent's ProSight Virtual Hosting service, a small business can have its key servers and applications hosted in a secure fault tolerant data center on a fast virtual host configured and managed by Progent's network support experts. With the ProSight Virtual Hosting model, the client retains ownership of the data, the OS platforms, and the apps. Because the environment is virtualized, it can be ported immediately to a different hosting solution without a time-consuming and difficult configuration process. With ProSight Virtual Hosting, you are not tied a single hosting provider. Learn more details about ProSight Virtual Hosting services.

• ProSight IT Asset Management: Network Documentation Management
  Progent's ProSight IT Asset Management service is an IT infrastructure documentation management service that allows you to create, update, retrieve and protect data related to your network infrastructure, procedures, business apps, and services. You can instantly locate passwords or serial numbers and be warned automatically about impending expirations of SSL certificates ,domains or warranties. By updating and managing your IT infrastructure documentation, you can save as much as 50% of time spent searching for critical information about your IT network. ProSight IT Asset Management features a centralized location for holding and sharing all documents required for managing your network infrastructure such as standard operating procedures (SOPs) and self-service instructions. ProSight IT Asset Management also offers a high level of automation for collecting and relating IT data. Whether you're planning improvements, performing maintenance, or reacting to a crisis, ProSight IT Asset Management delivers the information you require the instant you need it. Find out more details about Progent's ProSight IT Asset Management service.

Progent's ProSight Ransomware Preparedness Report Service
The ProSight Ransomware Preparedness Report service is a low-cost service based on a brief discussion with a Progent backup/recovery consultant. The interview is intended to help evaluate your company's ability either to block or recover quickly following an attack by a ransomware strain like Ryuk, WannaCry, NotPetya, or Hermes. Progent will work with you personally to gather information concerning your existing cybersecurity profile and backup/recovery platform, and Progent will then produce a written Basic Security and Best Practices Report document describing how you can apply best practices to create an efficient security and backup environment that aligns with your company's requirements. For details, refer to Progent's ProSight Ransomware Preparedness Report.

Set-price Security Assessment and Verification Bundles
Progent has put together a portfolio of set-price security and compliance evaluation bundles that deliver high value by utilizing Progent's enterprise-class network monitoring software plus Progent's technical skills to create an unbiased and thorough evaluation of your IT environment security posture.

• Security Inventory Service Bundles for Small Businesses
  Progent offers two ultra-affordable security inventory service packages designed to enable small organizations to obtain a professional security assessment from a certified security consultant. With Progent's External Security Inventory Scan, an engineer manages a comprehensive assessment of your network from outside your firewalled perimeter to determine possible risks in the security profile you present to the outside world. With Progent's Internal Security Inventory Scan, a security expert runs a system scan using an authorized machine within your corporate firewall to evaluate your exposure to inside threats. These two security inventory scans are set up and executed from a secured offsite location. The project is administered by a consultant who has earned advanced security certifications and who creates a report that details and evaluates the data collected by the scan and recommend practical enhancements where appropriate.
• Security Vulnerability Evaluation Bundles for Large Organizations
  Progent has developed three levels of fixed-price security assessment service packages intended for large organizations who want to meet compliance standards required by state or industry regulators. Progent's security assessment service bundles offer larger businesses a chance to get an objective assessment at the strength of their security profile. For every security evaluation bundle, Progent consultants with top security credentials study and report on collected data and provide recommendations for cost-effective remediation. All the network security assessment bundles include an added-cost option for onsite engineers at any location in the U.S.
• Expertise with Horizon3.ai's NodeZero PEN Testing Platform
  NodeZero from Horizon3.ai is a cutting-edge penetration test (pentest) product family that supports continuous, concurrent, automated assessment of your network so you can identify, prioritize, fix, and confirm security vulnerabilities before threat actors can exploit them. Progent can provide the support of a NodeZero Certified Operator (NCO) who can help you to deploy NodeZero to carry out thorough penetration tests of your network perimeter and your internal IT infrastructure in order to determine your current security posture. Progent can also help you to strengthen your network security and can help you to design and implement a cohesive cybersecurity ecosystem that simplifies management and provides optimum protection for on-premises, multi-cloud, and perimeter IT resources. To find out additional information about Progent's threat analysis services powered by on NodeZero's pentest platform, see Consulting Services for NodeZero's PEN Test Platform.
• Stealth Penetration Testing
  Stealth penetration testing, commonly referred to as PEN testing, is an accepted technique for allowing businesses to determine how vulnerable their network environments are to current-generation attacks. Progent's stealth penetration testing services test how effectively your existing security procedures and technologies resist authorized but unannounced intrusion attempts managed by Progent's experienced security specialists utilizing cutting-edge hacking methods. Find out about Progent's stealth penetration testing services.

Our System Has Been Hacked: What Are We Supposed to Do Now?
If your company is now fighting a security emergency and you do not have a formal response plan, go to Progent's Online Computer Support to see how to get immediate assistance. Progent provides remote assistance from skilled engineers and can escalate problems to high-level security experts if necessary. Your business does not need to be a current Progent customer to receive urgent help for a security breach, but you can sign up as a Progent client ahead of time at no cost and your status as a current customer could save precious time in an emergency.

Usually, smaller companies have no response plan in case of a successful penetration. This is risky, because the cost of a successful security attack can be even more catastrophic for a small company than for a big corporation. Progent's security engineers can assist your business to create an efficient recovery and event reporting plan that reduces the network downtime resulting from a security breach. The formal post-attack response procedure promoted by GIAC is Progent's suggested procedure for responding to a major security attack.

High-value Security Expertise Available from Progent
Progent's veteran consultants offer advanced support in vital areas of network protection such as:

• Vulnerability Evaluation and Compliance Assessment
  Progent provides experience with information risk evaluation software such as MS Baseline Security Analyzer or LANguard from GFI for performing a variety of automatic system scans to identify potential security problems. Progent has broad experience with these utilities and can help your company to analyze assessment reports and respond efficiently. Progent's certified security consultants also offer web application validation and can conduct thorough evaluation of corporate-wide security to validate your company's compliance with key global security standards including HIPAA, NIST, and ISO. In addition, Progent can assess the effectiveness of your wireless security including fixed wireless equipment plus mobile handsets. Read more information about Progent's Security Vulnerability Evaluation and Security Compliance Assessment.
• Designing, Building, and Validating Secure Networks
  Any company should have a carefully considered security plan that incorporates both proactive and reactive steps. The proactive plan is a collection of precautions that helps to minimize security holes. The reactive strategy specifies procedures to assist IT staff to evaluate the losses caused by an attack, remediate the damage, document the experience, and revive business activity as quickly as possible. Progent can advise you how to incorporate security into your business operations, configure auditing utilities, create and implement a safe computer architecture, and recommend procedures and policies to enhance the protection of your network. Progent's security professionals are ready to help you to set up a firewall, design safe offsite connectivity to e-mail and files, and configure an effective virtual private network. If you are interested in an affordable way for outsourcing your network security administration, Progent's 24x7 Network Support Packages include continual online system tracking and fast resolution of emergencies.
• System Restoration and Security Forensics
  Progent provides expertise in recovering systems and computers that have been hacked, are quarantined, or have failed because of a security breach. Progent can help assess the damage resulting from the breach, return your company to normal functions, and retrieve data compromised owing to the event. Progent's certified engineers can also oversee a comprehensive forensic evaluation by going over event logs and utilizing a variety of advanced assessment tools. Progent's experience with security issues minimizes your downtime and permits Progent to recommend effective measures to prevent or contain future attacks.
• Cisco ASA 5500-X Firewalls with Firepower, ASA 5500 Series Firewalls, and PIX Firewalls Configuration and Debugging
  The latest generation of Cisco ASA 5500-X Family of firewalls with Firepower Services provide significantly more value than Cisco's legacy firewalls and have superseded the ASA 5500 and PIX firewalls for new deployments. Since Cisco's purchase of Sourcefire, the entire line of ASA 5500-X devices can be provisioned to enable Firepower Services, built on Sourcefire's Snort technology, which is the market's most deployed intrusion protection system (IPS). Firepower services provide enhanced capabilities including advanced malware protection (AMP), URL filtering, real-time threat analytics, and automation. Progent's Cisco-premier CCIE network experts can assist your company to manage your current PIX or ASA 5500 security appliances and migrate to Cisco ASA 5500-X firewalls with Firepower Services. Progent's consultants offer remote and on-premises support for ASA 5500-X firewalls with Firepower Services and can assist your company to design, integrate, tune, administer and troubleshoot firewall environments built around Cisco ASA 5500-X firewalls with Firepower Services. Find out more details about ASA Firewalls with Firepower Services configuration and debugging support.
• Additional Firewall and Virtual Private Network (VPN) Technologies Provided by Progent
  In addition to offering support for a wide array of security solutions available from Microsoft and Cisco, Progent offers small organizations top-tier support for security products from other popular firewall and VPN vendors by offering services including:
  • Palo Alto Networks consulting
    
  • Check Point Software Technologies support
  • WatchGuard Technologies engineering services
  • Juniper Networks Inc technical assistance
  • SonicWall engineering services
  • Fortinet FortiGate Firewall technical assistance
    
  • Symantec technical assistance
  • Barracuda CloudGen Firewall Consultants
• SIEM Security Information and Event Management Integration and Support
  Security information and event management (SIEM) applications and services are intended to make sense the massive amounts of data represented by security event logs created by a wide range of sources including network appliances, servers, and applications and monitoring tools. SIEM applications analyzes the security event records from these various sources and creates summary reports of security incidents as mandated by state regulations and industry compliance standards. Progent's GIAC-certified network security consultants and Cisco CCIE certified network infrastructure experts can assist organizations to plan, deploy and operate a SIEM system that helps them to understand the behavior of security incidents and comply with security incident reporting regulations. (Visit Progent's SIEM solutions.)
• Software Update Management Solutions
  Patch management includes applying software or firmware updates to operating systems and apps, physical and virtual servers and endpoints, peripherals such as printers, network appliances such as routers and Wi-Fi access points, and Internet-of-Things devices like alarms and robotics. Prompt and properly managed patching optimizes cybersecurity, regulatory compliance, availability, and capability. Haphazard patch management can result in security vulnerabilities, compatibility problems, slow or erratic responsiveness, needless downtime, or loss of important features. Progent's support services for patch management provide organizations of any size a versatile and cost-effective solution for assessing, testing, scheduling, applying, and documenting updates to your dynamic IT network. (See Progent's patch management service plans.)

• Certified Information Security Manager Security Support Expertise
  CISM identifies the core skills and international benchmarks of performance that computer security professionals are required to achieve. CISM offers executive management the confidence that those who have earned their accreditation possess the background and knowledge to provide effective security management and consulting services. Progent can offer a CISM-certified consultant to assist your enterprise in vital security areas including data protection governance, risk assessment, information security process control, and incident handling support. Find out additional details about Progent's Certified Information Security Manager (CISM) Security Support Assistance.

• CISSP Security Support Services
  Progent's CISSP consultants are security engineers who have earned CISSP status through verified experience, extensive study, and exhaustive examination. CISSP Certification recognizes mastery of a worldwide standard for information security. ANSI has given the CISSP credential accreditation in the field of information security under ISO/IEC 17024. Areas of expertise covered within CISSP include security administration procedures, security design and test systems, access permission methodology, software development security, business processes security, hardware security, cryptography, communications, network security, and business continuity planning. Get more information concerning Progent's CISSP Support Expertise.

• CISSP-ISSAP Security Architecture Consulting Support Services
  Progent's CISSP-ISSAP Certified security architecture consultants have been awarded ISSAP accreditation after thorough examination and significant hands-on work with information security architecture. ISSAP consultants possess comprehensive understanding of access control mechanisms and techniques, phone system and network infrastructure protection, cryptography, needs evaluation, business continuity and disaster recovery planning (DRP), and physical security integration. Progent's CISSP-ISSAP-premier security specialists can assist your company with all aspects of secure network architecture. Read additional details concerning Progent's ISSAP Accredited Secure IT Infrastructure Consulting Services.

• CISA Professional Expertise
  The CISA accreditation is a prestigious achievement that represents mastery in network security auditing. Certified by the American National Standards Institute, the CISA credential requires that candidates undergo an extensive examination given by the ISACA professional association. Progent offers the services of a CISA-Premier security professional able to assist businesses in the fields of information systems audit services, IT administration, network assets and architecture lifecycle, information technology service delivery, protecting information resources, and disaster recovery preparedness. Find out the details concerning Progent's Certified Information Systems Auditor Professional Assistance.

• CRISC-certified Network Risk Management Experts
  The Certified in Risk and Information Systems Control (CRISC) certification program was established by ISACA to verify a consultant's ability to plan, implement, and maintain information system control mechanisms to reduce network risk. Progent can provide the expertise of a CRISC-certified consultant to assist you to create and carry out a business continuity plan based on industry best practices promoted by CRISC and geared to match your company's risk tolerance, business objectives, and budgetary guidelines. Progent's risk management expertise is a good fit the support available from Progent's CISA-Premier consultants for impartially evaluating your IS management mechanisms and with the expertise of Progent's CISM consultants for designing security policies. Read the details concerning Progent's CRISC IT Risk Management Support.

• GIAC (Global Information Assurance Certification) Consulting Expertise
  GIAC was founded in 1999 to validate the knowledge of network security experts. GIAC's mission is to verify that an accredited security consultant possesses the skills needed to provide support in critical areas of system, information, and application program security. GIAC certifications are acknowledged by businesses and institutions throughout the world including and the U.S. National Security Agency. Progent can provide the help of certified security engineers for any of the network security capabilities addressed within GIAC certification programs such as assessing IT infrastructure, security incident response, intrusion detection, and web services security. Read more information concerning Progent's Global Information Assurance Certification Consulting Assistance.