Computer Security and Compliance

Introduction to Progent's Security and Compliance Support Services
Progent's certified network security experts can provide a wide range of support services intended to assist organizations of all sizes to detect and eliminate security weaknesses, block attacks, recover from the damage resulting from a breakdown of protection, and comply with government requirements for protecting data and reporting incidents. Progent offers a selection of service delivery modes:

• As-needed online and on-site assistance invoiced by the minute
• Continual managed services billed at an affordable flat monthly fee
• Set-price service bundles for a single security and compliance evaluation

Delivery alternatives for Progent's on-demand support services include:

• Online Security Services
  The majority security-related problems can be resolved remotely via a mix of phone help and an Internet connection between Progent's Technical Response Center (TRC) and a customer's network. Progent's TRC group can provide online security help by offering efficient access to consultants with the background and resources to fix many of the most challenging issues quickly, making your support expenses affordable and reducing lost productivity.
• Onsite Security Support Services
  For instances where on-premises assistance is required, Progent can dispatch a technical expert to major cities throughout the United States. Progent can also dispatch a security specialist with top certifications and world-class skills to any site in the U.S.

ProSight Flat-rate Managed Services for Information Assurance
Progent's low-cost ProSight family of outsourced network management services is intended to provide small and mid-size businesses with enterprise-class support and cutting-edge technology for all facets of information assurance and compliance. ProSight managed services offered by Progent include:

• ProSight Active Security Monitoring (ASM): Endpoint Protection and Ransomware Recovery
  ProSight Active Security Monitoring is an endpoint protection solution that utilizes cutting edge behavior-based analysis technology to defend endpoints as well as physical and virtual servers against modern malware assaults like ransomware and file-less exploits, which routinely escape traditional signature-based AV products. ProSight Active Security Monitoring protects local and cloud resources and provides a single platform to address the entire threat progression including blocking, detection, mitigation, cleanup, and post-attack forensics. Top capabilities include single-click rollback using Windows VSS and automatic network-wide immunization against new threats. Read more about Progent's ProSight Active Security Monitoring endpoint protection and ransomware recovery.

• ProSight Enhanced Security Protection (ESP): Unified Endpoint Security
  ProSight Enhanced Security Protection services deliver economical multi-layer protection for physical and virtual servers, workstations, mobile devices, and Exchange email. ProSight ESP uses contextual security and advanced heuristics for continuously monitoring and reacting to security threats from all vectors. ProSight ESP offers two-way firewall protection, penetration alerts, device control, and web filtering via leading-edge tools packaged within one agent accessible from a single console. Progent's data protection and virtualization consultants can assist your business to plan and implement a ProSight ESP deployment that addresses your company's unique requirements and that helps you demonstrate compliance with legal and industry information protection standards. Progent will assist you specify and configure policies that ProSight ESP will enforce, and Progent will monitor your network and respond to alarms that call for immediate action. Progent's consultants can also help you to install and verify a backup and restore system such as ProSight Data Protection Services so you can recover rapidly from a potentially disastrous cyber attack such as ransomware. Find out more about Progent's ProSight Enhanced Security Protection (ESP) unified endpoint protection and Microsoft Exchange email filtering.

• ProSight DPS: Managed Cloud Backup
  ProSight Data Protection Services from Progent offer small and medium-sized organizations an affordable and fully managed service for reliable backup/disaster recovery (BDR). Available at a fixed monthly rate, ProSight Data Protection Services automates and monitors your backup activities and enables rapid recovery of critical data, apps and virtual machines that have become unavailable or corrupted due to hardware failures, software bugs, disasters, human mistakes, or malicious attacks like ransomware. ProSight DPS can help you protect, retrieve and restore files, folders, applications, system images, plus Hyper-V and VMware images/. Critical data can be protected on the cloud, to a local device, or to both. Progent's cloud backup specialists can deliver advanced expertise to configure ProSight DPS to to comply with regulatory requirements such as HIPPA, FINRA, and PCI and, whenever needed, can assist you to recover your critical information. Read more about ProSight DPS Managed Backup.

• ProSight Email Guard: Inbound and Outbound Spam Filtering, Data Leakage Protection and Content Filtering
  ProSight Email Guard is Progent's email filtering and encryption solution that incorporates the services and infrastructure of top data security companies to provide centralized control and comprehensive security for all your email traffic. The hybrid structure of Email Guard managed service combines cloud-based filtering with a local security gateway device to offer advanced defense against spam, viruses, Denial of Service (DoS) Attacks, Directory Harvest Attacks, and other email-based malware. The cloud filter serves as a preliminary barricade and keeps the vast majority of threats from reaching your network firewall. This reduces your exposure to external threats and conserves system bandwidth and storage. Email Guard's on-premises gateway appliance adds a further level of inspection for inbound email. For outgoing email, the on-premises security gateway provides AV and anti-spam filtering, protection against data leaks, and encryption. The onsite security gateway can also assist Exchange Server to monitor and safeguard internal email traffic that stays within your corporate firewall. Learn more about Progent's ProSight Email Guard spam filtering, virus defense, content filtering and data leakage protection.

• ProSight WAN Watch: Infrastructure Remote Monitoring and Management
  ProSight WAN Watch is an infrastructure monitoring and management service that makes it simple and inexpensive for smaller organizations to map, track, reconfigure and troubleshoot their connectivity appliances such as routers, firewalls, and wireless controllers as well as servers, printers, client computers and other devices. Using cutting-edge RMM technology, WAN Watch ensures that network maps are always current, copies and displays the configuration of virtually all devices connected to your network, monitors performance, and sends notices when potential issues are detected. By automating time-consuming management processes, WAN Watch can knock hours off common chores like network mapping, reconfiguring your network, finding devices that require critical updates, or isolating performance issues. Learn more details about ProSight WAN Watch network infrastructure monitoring and management services.

• ProSight LAN Watch: Server and Desktop Monitoring and Management
  ProSight LAN Watch is Progent’s server and desktop monitoring managed service that incorporates advanced remote monitoring and management (RMM) technology to keep your IT system running at peak levels by checking the health of critical computers that power your business network. When ProSight LAN Watch detects an issue, an alert is transmitted automatically to your designated IT staff and your assigned Progent consultant so any potential issues can be addressed before they can impact productivity Learn more details about ProSight LAN Watch server and desktop monitoring services.

• ProSight Virtual Hosting: Hosted Virtual Machines at Progent's Tier III Data Center
  With Progent's ProSight Virtual Hosting service, a small or mid-size business can have its critical servers and applications hosted in a secure Tier III data center on a fast virtual host set up and maintained by Progent's IT support professionals. Under the ProSight Virtual Hosting service model, the customer retains ownership of the data, the operating system platforms, and the apps. Since the system is virtualized, it can be ported immediately to an alternate hardware environment without requiring a time-consuming and difficult reinstallation procedure. With ProSight Virtual Hosting, you are not tied one hosting service. Learn more details about ProSight Virtual Hosting services.

• ProSight IT Asset Management: Network Documentation Management
  Progent's ProSight IT Asset Management service is a cloud-based IT documentation management service that allows you to capture, update, retrieve and protect information about your IT infrastructure, processes, business apps, and services. You can instantly locate passwords or IP addresses and be warned about impending expirations of SSLs ,domains or warranties. By cleaning up and organizing your IT documentation, you can eliminate up to 50% of time spent searching for vital information about your network. ProSight IT Asset Management features a common repository for storing and sharing all documents required for managing your network infrastructure such as standard operating procedures (SOPs) and self-service instructions. ProSight IT Asset Management also supports a high level of automation for collecting and relating IT information. Whether you’re making improvements, performing maintenance, or responding to an emergency, ProSight IT Asset Management gets you the data you need as soon as you need it. Find out more about ProSight IT Asset Management service.

Progent's ProSight Ransomware Preparedness Report
The ProSight Ransomware Preparedness Report service is a low-cost service based on a brief phone discussion with a Progent information assurance expert. The interview is intended to assess your company's ability either to block or recover quickly following an attack by a ransomware strain such as Ryuk, WannaCry, NotPetya, or Hermes. Progent will work with you directly to gather information about your existing antivirus tools and backup system, and Progent will then deliver a custom Basic Security and Best Practices Report document describing how you can follow industry best practices to build a cost-effective AV and backup/recovery environment that meets your business needs. For additional information, visit The ProSight Ransomware Preparedness Report.

Set-price Security Assessment and Validation Packages
Progent has put together a portfolio of set-price security evaluation bundles that deliver exceptional value by utilizing Progent's enterprise-class system monitoring software plus Progent's technical skills to produce an unbiased and thorough evaluation of your IT environment security profile.

• Security Inventory Service Packages for Small Businesses
  Progent offers two value-priced security inventory scanning service packages intended to allow small organizations to obtain an objective security evaluation from an accredited security consultant. With Progent's External Security Inventory Scan, an engineer manages an extensive examination of your network from outside your corporate firewall to identify potential risks in the security profile you present to the public. With Progent's Internal Security Inventory Scan, a security expert executes a network scan from an authorized computer inside your firewalled perimeter to evaluate your exposure to inside assaults. These two security inventory scanning services are set up and executed from a secured offsite location. The scan is managed by an engineer who has earned high-level security certifications and who creates a document that details and interprets the information collected by the scan and recommend practical improvements where required.
• Security Vulnerability Evaluation Bundles for Enterprises
  Progent offers three levels of flat-rate security evaluation service packages designed for large organizations who want to meet security standards required by government or industry agencies. Progent's security assessment service packages offer enterprises an opportunity to get an objective assessment at the viability of their security profile. For each security evaluation package, Progent engineers with top security credentials analyze and report on collected data and offer suggestions for cost-effective improvements. All the network security assessment packages include an extra-cost option for onsite consultants at any location in the United States.
• Stealth Penetration Testing Services
  Stealth penetration testing, commonly called PEN testing, is a vital technique for allowing businesses to determine how vulnerable their network environments are to current-generation threats. Progent's stealth penetration testing services check how effectively your corporate security policies and technologies stand up to authorized but unannounced intrusion attempts managed by Progent's experienced security experts using advanced hacking techniques. Read about Progent's stealth penetration testing services.

Typically, smaller organizations have no recovery procedure in the event of a damaging security breach. This is risky, because the cost of a serious security attack can be more devastating for a small business than for a big enterprise. Progent's security consultants can help your company to create a practical response and event reporting plan that minimizes the network disruption resulting from a security breach. The step-by-step post-attack response procedure outlined by GIAC is Progent's suggested method for responding to a serious security penetration.

High-value Security Expertise Offered by Progent
Progent's certified security engineers offer world-class consulting in key facets of IT compliance including:

• Information Risk Audits and Compliance Testing
  Progent provides expertise with information risk auditing software such as Microsoft Baseline Security Analyzer and LANguard from GFI for performing a variety of automatic network scans to identify possible security holes. Progent has extensive skills with monitoring tools and can help your company to analyze assessment reports and react efficiently. Progent's certified security engineers also provide web software validation and can perform expert evaluation of enterprise-wide security to confirm your organization's compliance with major industry security standards such as FISMA, NIST, and ISO 17799. Also, Progent can assess the effectiveness of your wireless security covering stationary wireless equipment plus portable handsets. Learn additional details concerning Progent's Information Risk Evaluation and Security Compliance Assessment.
• Planning, Building, and Testing Secure Networks
  Any organization should develop a thoroughly thought out security plan that includes both proactive and responsive steps. The pre-attack plan is a set of precautions that works to minimize security holes. The post-attack strategy specifies procedures to help IT staff to inventory the damage caused by an attack, repair the damage, document the event, and revive network functions as soon as feasible. Progent can show you how to design protection into your company processes, configure scanning software, define and implement a secure IT infrastructure, and propose procedures and policies that will optimize the safety of your computing environment. Progent's security experts are ready to help you to set up a firewall, design secure remote connectivity to e-mail and data, and install an efficient virtual private network. If you are interested in an affordable way for outsourcing your network security administration, Progent's 24x7 Monitoring Packages feature non-stop online network monitoring and fast resolution of emergencies.
• Data Restoration and Security Forensics
  Progent provides expertise in recovering systems and servers that have been compromised, are quarantined, or have ceased to function following a security attack. Progent can show you how to assess the losses resulting from the assault, restore ordinary functions, and recover information compromised as a result of the attack. Progent's security engineers can also oversee a thorough failure evaluation by going over event logs and using other proven forensics techniques. Progent's experience with security problems reduces your business disruption and permits Progent to recommend effective measures to prevent or mitigate new attacks.
• Cisco ASA 5500-X Firewalls with Firepower, ASA 5500 Firewalls, and PIX Firewalls Integration and Troubleshooting
  The current Cisco ASA 5500-X Family of firewalls with Firepower Services offer substantially more bang for the buck than Cisco's previous firewalls and have replaced the ASA 5500 and PIX firewalls for new deployments. After Cisco's purchase of Sourcefire, the whole family of Cisco ASA 5500-X firewalls can be provisioned to support Firepower Services, built on Sourcefire's Snort technology, which is the world's most deployed intrusion protection system. Firepower services provide enhanced capabilities such as advanced malware protection (AMP), URL filtering, dynamic threat analytics, and security automation. Progent's Cisco-premier CCIE network consultants can help you to maintain your legacy PIX or Cisco ASA 5500 security appliances and migrate to ASA 5500-X firewalls with Firepower Services. Progent's consultants offer remote and on-premises support for ASA 5500-X firewalls with Firepower Services and can help your organization to plan, configure, optimize, administer and troubleshoot firewall environments built around Cisco ASA 5500-X firewalls with Firepower Services. Read additional information about ASA 5500-X Firewalls with Firepower Services integration and troubleshooting support.
• Additional Firewall and Virtual Private Network (VPN) Solutions Offered by Progent
  In addition to supporting a broad range of network security technologies from Microsoft and Cisco, Progent can provide small businesses expert consulting for technologies from other important firewall and VPN vendors by delivering services including:
  • Palo Alto Networks consulting
    
  • Check Point Software Technologies consulting
  • WatchGuard integration expertise
  • Juniper support
  • SonicWall integration expertise
  • Fortinet FortiGate Firewall help
    
  • Symantec Corp support
• SIEM Security Information and Event Management Integration and Support
  Security information and event management (SIEM) applications and services are intended to digest the enormous quantity of data collected in security event logs generated by a wide range of sources including network infrastructure appliances, operating systems, and applications and tools. SIEM applications organizes the security event records from these diverse sources and produces summary reports of security incidents as required by government regulations and business compliance standards. Progent's GIAC-certified information assurance consultants and Cisco-certified network experts can assist businesses to plan, install and manage a SIEM system that helps them to see the behavior of security incidents and comply with event reporting regulations. (See Progent's Security information and Event Management solutions.)

• Certified Information Security Manager Security Support Services
  Certified Information Security Manager identifies the fundamental skills and worldwide benchmarks of performance that IT security professionals are expected to master. It provides executive management the confidence that consultants who have earned their certification possess the background and skill to provide effective security management and engineering support. Progent can offer a CISM-certified consultant to help your organization in vital security areas such as information protection governance, vulnerability assessment, information protection program control, and crisis handling support. Read additional details about Progent's Certified Information Security Manager (CISM) Security Consulting Expertise.

• CISSP Security Consulting Expertise
  Progent's CISSP experts are security specialists who have earned CISSP accreditation as a result of demonstrated experience, rigorous study, and exhaustive testing. CISSP Certification indicates expertise in an international standard for IT security. ANSI has given the CISSP credential accreditation in the area of IT security under ISO/IEC 17024. Areas of expertise covered under CISSP include security management procedures, security architecture and test systems, access permission methodology, applications development security, operations security, physical security, cryptography, telecommunications, Internet security, and disaster recovery planning. Find out additional details about Progent's CISSP Consulting Expertise.

• CISSP-ISSAP} Security Architecture Consulting Expertise
  Progent's CISSP-ISSAP Certified security architecture experts have earned ISSAP status after thorough testing and substantial hands-on work with network security design. ISSAP consultants have in-depth knowledge of access control systems and techniques, telecommunications and network protection, cryptography, needs evaluation, business continuity and DRP, and physical security. Progent's CISSP-ISSAP-premier security experts can assist your business with all aspects of secure network architecture. Find out more details concerning Progent's ISSAP Accredited Protected IT Architecture Consulting Support.

• CISA Professional Services
  The Certified Information Systems Auditor accreditation is a recognized qualification that indicates mastery in network security audit and control. Certified by the American National Standards Institute (ANSI), the CISA credential has consultants undergo an extensive examination given by the ISACA professional group. Progent offers the services of a CISA-Premier security consultant able to assist companies in the fields of information systems audit services, information technology administration, systems and infrastructure lifecycle, information technology support, protecting data resources, and disaster recovery preparedness. Find out additional details about Progent's CISA Consulting Expertise.

• CRISC Network Risk Management Experts
  The Certified in Risk and Information Systems Control (CRISC) certification program was initiated by ISACA in 2010 to validate an IT professional's ability to plan, implement, and support information system controls to reduce risk. Progent offers the services of a CRISC-certified engineer to assist you to develop and carry out a workplace continuity plan that follows industry best practices promoted by CRISC and crafted to align with your company's risk tolerance, business objectives, and budgetary guidelines. Progent's network risk mitigation expertise is a good fit the services available from Progent's CISA-Certified consultants for impartially auditing your IT management design and with the services of Progent's CISM-certified support professionals for designing security policies and procedures. Find out additional information about Progent's CRISC-certified IT Risk Management Consulting.

• GIAC Professional Expertise
  GIAC was founded in 1999 to validate the skill of computer security engineers. GIAC's goal is to ensure that an accredited professional has the knowledge appropriate to provide support in vital categories of system, data, and software security. GIAC certifications are recognized by companies and government organizations all over the world including and the United States National Security Agency. Progent can provide the support of certified professionals for all of the security capabilities covered within GIAC certification programs including auditing networks, incident handling, intrusion detection, and web application security. Read the details about Progent's Global Information Assurance Certification Consulting Assistance.