Data Security and Compliance Consulting

Overview of Progent's Security Consulting Services
Progent's certified network security and compliance experts offer a wide selection of support services intended to assist businesses of any size to detect and eliminate security weaknesses, block malicious attacks, recover from any damage resulting from a breach of security, and meet government requirements for protecting data and reporting security incidents. Progent offers a selection of service delivery models:

• On-demand online and on-site assistance invoiced by the minute
• Continual fully managed services invoiced at a low flat monthly rate
• Set-price service packages for a single security and compliance evaluation

Delivery alternatives for Progent's as-needed support services include:

• Online Security Support Services
  Most security issues can be handled online through a mix of phone support and a remote connection between Progent's Technical Response Center (TRC) and a customer's network. Progent's Technical Response Center can provide remote security support by offering efficient access to consultants who have the background and resources to resolve some of the most difficult problems quickly, keeping your support costs low and minimizing lost productivity.
• On-premises Security Support
  For cases where onsite support is necessary, Progent can send a technical expert to major cities throughout the U.S. Progent can also send a security consultant with high-level certifications and advanced skills to any site in the country.

ProSight Low-Cost Managed Services for Information Assurance
Progent's low-cost ProSight line of outsourced network management services is designed to provide small and mid-size organizations with enterprise-class support and state-of-the-art technology for all facets of information assurance and compliance. Managed services available from Progent include:

• ProSight Active Security Monitoring (ASM): Endpoint Protection and Ransomware Recovery
  Progent's ProSight Active Security Monitoring is an endpoint protection service that utilizes next generation behavior-based machine learning tools to guard endpoint devices as well as servers and VMs against new malware assaults such as ransomware and email phishing, which routinely escape legacy signature-based AV products. ProSight ASM safeguards on-premises and cloud-based resources and provides a unified platform to address the complete malware attack progression including protection, infiltration detection, containment, cleanup, and forensics. Key capabilities include one-click rollback with Windows Volume Shadow Copy Service (VSS) and real-time network-wide immunization against new attacks. Learn more about Progent's ProSight Active Security Monitoring endpoint protection and ransomware recovery.

• ProSight Enhanced Security Protection: Unified Physical and Virtual Endpoint Protection
  Progent's ProSight Enhanced Security Protection (ESP) managed services deliver ultra-affordable in-depth protection for physical servers and virtual machines, workstations, smartphones, and Exchange email. ProSight ESP utilizes adaptive security and advanced machine learning for round-the-clock monitoring and reacting to cyber threats from all vectors. ProSight ESP offers firewall protection, penetration alerts, device control, and web filtering through leading-edge tools packaged within one agent accessible from a single control. Progent's security and virtualization consultants can help your business to plan and configure a ProSight ESP environment that addresses your company's unique needs and that helps you prove compliance with legal and industry information protection regulations. Progent will help you define and implement policies that ProSight ESP will enforce, and Progent will monitor your IT environment and react to alarms that require urgent attention. Progent's consultants can also help you to set up and test a backup and disaster recovery system like ProSight Data Protection Services (DPS) so you can get back in business quickly from a potentially disastrous cyber attack such as ransomware. Learn more about Progent's ProSight Enhanced Security Protection unified endpoint protection and Exchange filtering.

• ProSight Data Protection Services: Managed Backup and Recovery
  ProSight Data Protection Services from Progent offer small and medium-sized businesses a low cost end-to-end solution for reliable backup/disaster recovery (BDR). Available at a fixed monthly price, ProSight Data Protection Services automates and monitors your backup activities and enables rapid recovery of vital data, apps and VMs that have become unavailable or damaged as a result of component failures, software glitches, disasters, human error, or malicious attacks such as ransomware. ProSight Data Protection Services can help you back up, retrieve and restore files, folders, applications, system images, plus Hyper-V and VMware images. Important data can be backed up on the cloud, to an on-promises device, or mirrored to both. Progent's backup and recovery consultants can deliver advanced expertise to set up ProSight DPS to be compliant with government and industry regulatory standards like HIPAA, FINRA, and PCI and, whenever needed, can assist you to restore your critical data. Find out more about ProSight DPS Managed Backup.

• ProSight Email Guard: Inbound and Outbound Spam Filtering, Data Leakage Protection and Content Filtering
  ProSight Email Guard is Progent's email security platform that uses the technology of top data security companies to deliver centralized management and world-class security for your inbound and outbound email. The hybrid structure of Progent's Email Guard managed service integrates a Cloud Protection Layer with an on-premises security gateway device to provide complete defense against spam, viruses, Denial of Service (DoS) Attacks, Directory Harvest Attacks (DHAs), and other email-borne threats. Email Guard's cloud filter acts as a preliminary barricade and blocks the vast majority of threats from reaching your security perimeter. This decreases your vulnerability to external threats and conserves system bandwidth and storage. Email Guard's onsite security gateway appliance adds a deeper layer of analysis for incoming email. For outgoing email, the local gateway provides AV and anti-spam filtering, protection against data leaks, and encryption. The on-premises gateway can also assist Microsoft Exchange Server to track and protect internal email that originates and ends within your security perimeter. Find out more about Progent's ProSight Email Guard spam filtering, virus defense, email content filtering and data leakage protection.

• ProSight Duo MFA: Two-Factor Identity Authentication
  ProSight Duo is a suite of managed service plans utilizing top-ranked technology developed by Duo, a Cisco-owned company, to create two-factor authentication (2FA) solutions. Two-factor authentication utilizes an out-of-band endpoint to validate identity, providing a second level of protection over and above merely passwords. This counters the most common causes of IT security break-ins like phishing, brute-force password guessing, and purloined personal credentials. Duo's push technology can save time and minimize annoyance by permitting users anywhere to verify their identity as easily as clicking "Approve" on the authentication box on their unique device, which can be an Android or iOS smartphone, a smart watch, or other supported out-of-band device. This single-tap procedure avoids the requirement to open an email or text message and manually copy a security code. Find out more about Progent's ProSight Duo MFA multi-factor authentication services.

• ProSight WAN Watch: Network Infrastructure Remote Monitoring and Management
  ProSight WAN Watch is a network infrastructure monitoring and management service that makes it simple and inexpensive for smaller organizations to diagram, track, enhance and debug their networking appliances like routers and switches, firewalls, and load balancers as well as servers, endpoints and other networked devices. Using cutting-edge Remote Monitoring and Management (RMM) technology, ProSight WAN Watch ensures that infrastructure topology diagrams are always current, captures and manages the configuration information of almost all devices on your network, monitors performance, and generates alerts when potential issues are discovered. By automating time-consuming network management activities, WAN Watch can cut hours off common tasks such as network mapping, expanding your network, finding devices that require critical updates, or identifying the cause of performance issues. Learn more details about ProSight WAN Watch infrastructure monitoring and management services.

• ProSight LAN Watch: Server and Desktop Remote Monitoring and Management
  ProSight LAN Watch is Progent’s server and desktop remote monitoring managed service that uses state-of-the-art remote monitoring and management technology to help keep your network operating efficiently by checking the state of critical assets that drive your information system. When ProSight LAN Watch uncovers an issue, an alarm is transmitted automatically to your specified IT management personnel and your assigned Progent engineering consultant so any potential problems can be addressed before they have a chance to impact productivity Learn more details about ProSight LAN Watch server and desktop remote monitoring consulting.

• ProSight Virtual Hosting: Hosted VMs at Progent's Tier III Data Center
  With Progent's ProSight Virtual Hosting service, a small business can have its critical servers and applications hosted in a protected fault tolerant data center on a high-performance virtual machine host set up and maintained by Progent's network support professionals. Under the ProSight Virtual Hosting service model, the client retains ownership of the data, the operating system software, and the applications. Since the system is virtualized, it can be ported immediately to an alternate hardware environment without a lengthy and technically risky configuration process. With ProSight Virtual Hosting, your business is not locked into a single hosting service. Find out more about ProSight Virtual Hosting services.

• ProSight IT Asset Management: Network Documentation Management
  ProSight IT Asset Management service is a cloud-based IT documentation management service that allows you to create, maintain, retrieve and safeguard information related to your IT infrastructure, procedures, business apps, and services. You can quickly locate passwords or serial numbers and be warned automatically about impending expirations of SSL certificates or warranties. By updating and managing your network documentation, you can eliminate as much as 50% of time thrown away looking for vital information about your network. ProSight IT Asset Management features a centralized location for storing and sharing all documents related to managing your network infrastructure such as standard operating procedures (SOPs) and self-service instructions. ProSight IT Asset Management also offers advanced automation for collecting and relating IT data. Whether you’re planning improvements, performing maintenance, or responding to a crisis, ProSight IT Asset Management gets you the information you need when you need it. Learn more details about Progent's ProSight IT Asset Management service.

Progent's ProSight Ransomware Preparedness Report
Progent's ProSight Ransomware Preparedness Report service is a low-cost service based on a brief phone discussion with a Progent backup/recovery consultant. The fact-finding interview is designed to evaluate your organization's ability either to stop or recover rapidly following an attack by a ransomware variant such as Ryuk, WannaCry, NotPetya, or Locky. Progent will consult with you personally to gather information about your existing antivirus tools and backup platform, and Progent will then produce a written Basic Security and Best Practices Report describing how you can apply industry best practices to build a cost-effective AV and backup/recovery system that aligns with your business requirements. For additional information, refer to Progent's ProSight Ransomware Preparedness Report Service.

Flat-rate Security Evaluation and Verification Packages
Progent offers a selection of flat-rate security assessment bundles that provide high value by deploying Progent's advanced network monitoring and analysis software plus Progent's technical skills to create an unbiased and thorough assessment of your network security posture.

• Security Assessment Service Bundles for Small Organizations
  Progent offers two value-priced security inventory scanning packages designed to enable small businesses to obtain an objective security assessment from a certified security consultant. With Progent's External Security Inventory Scan, a consultant administers a comprehensive assessment of your IT system from beyond your corporate firewall to identify potential risks in the security profile you expose to the outside. With Progent's Internal Security Inventory Scan, a certified security expert executes a system scan from an authorized computer inside your corporate firewall to assess your exposure to internal attacks. The two security inventory services are configured and executed from a secured external site. The project is administered by a consultant who has been awarded high-level security certifications and who produces a report that describes and evaluates the data captured by the security scan and suggests various improvements where required.
• Security Vulnerability Assessment Bundles for Large Businesses
  Progent has developed three levels of set-price security evaluation service packages designed for enterprises who need to meet security standards required by state or industry agencies. Progent's security assessment service bundles offer larger businesses a chance to obtain an objective look at the strength of their security profile. For every security assessment package, Progent engineers with advanced security credentials analyze and report on collected data and provide recommendations for cost-effective remediation. Each of the network security audit bundles include an extra-cost option for on-premises engineers anywhere in the U.S.
• Stealth Penetration Testing
  Stealth penetration testing, commonly called PEN testing, is a critical technique for allowing organizations to find out how vulnerable their IT environments are to modern attacks. Progent's stealth penetration testing check how effectively your corporate security policies and technologies stand up to authorized but unannounced penetration attempts managed by Progent's certified security specialists using advanced hacking techniques. Read about Progent's stealth penetration testing services.

Usually, smaller companies have not documented a response procedure in case of a successful attack. This is risky, because the damage from a serious security assault can be more catastrophic for a small company than for a large enterprise. Progent's security engineers can help your you to create an effective recovery and event reporting procedure that reduces the IT system downtime following a security breach. The formal incident response model promoted by GIAC is Progent's suggested method for reacting to a serious security penetration.

High-value Security Expertise Offered by Progent
Progent's certified consultants can provide advanced support in vital areas of network protection such as:

• Security Vulnerability Evaluation and Security Compliance Testing
  Progent provides experience with information risk evaluation software like Microsoft Baseline Security Analyzer or LANguard from GFI for conducting a set of comprehensive system scans to identify potential security problems. Progent has extensive skills with these and similar tools and can help you to analyze audit reports and react efficiently. Progent's certified security consultants also provide web software testing and can conduct thorough evaluation of enterprise-wide security to validate your organization's compliance with major global security specifications such as HIPAA, PCI, and ISO. Also, Progent can assess the effectiveness of your wireless security covering stationary wireless equipment as well as portable handsets. Learn more information concerning Progent's Vulnerability Audits and Compliance Testing.
• Planning, Building, and Validating Secure Environments
  Any organization ought to develop a carefully considered security plan that includes both preventive and reactive steps. The proactive strategy is a collection of precautions that works to minimize security holes. The reactive strategy specifies activities to assist security staff to evaluate the damage caused by an attack, remediate the damage, record the event, and revive business functions as soon as possible. Progent can advise you how to incorporate protection into your business operations, set up scanning software, create and build a safe network infrastructure, and propose procedures and policies to maximize the safety of your information system. Progent's security experts are ready to assist you to set up a firewall, deploy safe offsite access to e-mail and data, and install an efficient VPN. If your company is looking for an economical way for outsourcing your security administration, Progent's Round-the-clock Network Support Services feature automated online network monitoring and quick response to problems.
• Data Recovery and Failure Analysis
  Progent offers skill in restoring systems and devices that have been compromised, are suspect, or have failed because of a security penetration. Progent can show you how to assess the damage caused by the assault, restore ordinary functions, and recover data compromised owing to the event. Progent's certified engineers can also manage a comprehensive forensic evaluation by going over event logs and utilizing a variety of proven forensics tools. Progent's experience with security problems minimizes your downtime and allows Progent to recommend efficient measures to avoid or contain future assaults.
• Cisco ASA 5500-X Firewalls with Firepower, ASA 5500 Series Firewalls, and PIX 500 Firewalls Integration and Troubleshooting
  The current ASA 5500-X Family of firewalls with Firepower Services deliver significantly more bang for the buck than Cisco's legacy PIX and ASA 5500 firewalls and have replaced the ASA 5500 and PIX 500 firewalls for all new deployments. Since Cisco's acquisition of Sourcefire, the whole family of ASA 5500-X devices can be provisioned to support Firepower Services, built on Sourcefire's Snort technology, which is the market's most popular intrusion protection system. Firepower services bring enhanced features including advanced malware protection (AMP), URL filtering, dynamic threat analytics, and security automation. Progent's Cisco-premier CCIE network consultants can assist your company to manage your existing PIX or ASA 5500 security appliances or upgrade to Cisco ASA 5500-X firewalls with Firepower Services. Progent's consultants can provide online and on-premises help with ASA 5500-X firewalls with Firepower Services and can help your organization to plan, deploy, tune, manage and troubleshoot firewall environments based on Cisco ASA 5500-X firewalls with Firepower Services. Find out additional information about Cisco ASA 5500-X Firewalls with Firepower Services integration and troubleshooting support.
• Other Firewall and Virtual Private Network (VPN) Solutions Offered by Progent
  As well as offering support for a wide array of protection technologies available from Microsoft and Cisco, Progent can provide small and mid-size organizations top-tier consulting for security products from other major firewall and Virtual Private Network suppliers by offering services such as:
  • Palo Alto Networks support
    
  • Check Point Software Technologies support
  • WatchGuard Technologies Inc integration expertise
  • Juniper Networks Inc consulting
  • SonicWall Inc. support
  • Fortinet FortiGate Firewall technical assistance
    
  • Symantec Corp technical assistance
• SIEM Solutions
  Security information and event management (SIEM) applications and services are intended to interpret the enormous amounts of data represented by security event records created by a wide range of sources such as network appliances, servers, and application software and tools. SIEM applications analyzes the security event records from these various sources and produces summary reports of security events as required by state regulations and industry compliance guidelines. Progent's GIAC-certified computer security consultants and Cisco CCIE certified network infrastructure experts can assist organizations to plan, deploy and manage a SIEM system that helps them to understand the progress of security incidents and comply with event reporting requirements. (See Progent's Security information and Event Management solutions.)
• Patch Management Solutions
  Software update management includes applying software updates to operating systems and apps, physical and virtual servers and endpoints, peripherals like printers and scanners, network infrastructure appliances like routers and wireless access points, and IoT devices such as alarms and health monitors. Prompt and properly managed patching maximizes cybersecurity, regulatory compliance, availability, and functionality. Haphazard software update management can result in security vulnerabilities, compatibility issues, sluggish or erratic performance, unnecessary offline stretches, or loss of important functions. Progent's managed services for patch management provide businesses of all sizes a versatile and cost-effective solution for evaluating, testing, scheduling, applying, and tracking updates to your dynamic information network. (Visit Progent's software update management solutions.)

• Certified Information Security Manager (CISM) Security Support Services
  Certified Information Security Manager (CISM) identifies the basic competencies and international benchmarks of performance that computer security professionals are expected to master. CISM offers executive management the confidence that those who have been awarded their certification have the background and knowledge to offer efficient security management and engineering services. Progent can offer a CISM-certified consultant to help your enterprise in critical security areas such as information protection governance, risk management, information security program control, and incident response management. Get additional details about Progent's CISM Security Consulting Assistance.

• Certified Information Systems Security Professionals (CISSP) Security Consulting Services
  Progent's CISSP experts are security specialists who have been awarded CISSP accreditation through demonstrated professional work, extensive study, and formal examination. CISSP Certification recognizes expertise in a worldwide standard for information security. ANSI has granted the CISSP status official recognition in the area of IT security under ISO/IEC 17024. Fields of expertise included within CISSP include security management practices, security design and models, connection control methodology, applications development security, operations security, physical security, cryptography, communications, network security, and business continuity planning. Get more details concerning Progent's CISSP Consulting Services.

• CISSP-ISSAP Cybersecurity Architecture Consulting Support
  Progent's CISSP-ISSAP Certified security architecture experts have been awarded ISSAP status after rigorous examination and substantial hands-on work with information security architecture. ISSAP security experts have acquired comprehensive understanding of access control mechanisms and methodologies, telecommunications and network protection, cryptography, requirements analysis, BCP and disaster recovery, and physical security integration. Progent's CISSP-ISSAP-certified security experts can assist your company with all phases of secure network architecture. Read the details about Progent's ISSAP Accredited Secure Network Infrastructure Consulting Services.

• Certified Information Systems Auditor (CISA) Professional Expertise
  The Certified Information Systems Auditor (CISA) accreditation is a prestigious qualification that indicates expertise in information system security auditing. Accredited by the American National Standards Institute (ANSI), the CISA accreditation requires that candidates undergo a comprehensive examination administered by the ISACA international professional group. Progent can provide the services of a CISA-Premier security consultant able to assist businesses in the areas of IS audit process, IT enforcement, network assets and infrastructure lifecycle, information technology service delivery, safeguarding data assets, and disaster recovery preparedness. Learn more details concerning Progent's CISA Professional Expertise.

• CRISC-certified Risk Mitigation Experts
  The CRISC certification program was initiated by ISACA in 2010 to validate an IT professional's skills to design, implement, and support IS controls to mitigate network risk. Progent can provide the expertise of a CRISC-certified consultant to assist your company to develop and execute a workplace continuity strategy based on industry best practices promoted by CRISC and geared to match your organization's risk appetite, business goals, and budgetary guidelines. Progent's risk mitigation services are complementary to the support provided by Progent's CISA-Premier consultants for impartially auditing your IS management design and with the services of Progent's CISM experts for designing security policies and procedures. Find out the details about Progent's CRISC Risk Management Expertise.

• GIAC Support Expertise
  GIAC was founded in 1999 to validate the skill of computer security engineers. GIAC's mission is to assure that an accredited security consultant possesses the skills necessary to deliver support in key categories of network, data, and application security. GIAC accreditations are recognized by businesses and government organizations around the world including and the United States National Security Agency. Progent offers the help of certified professionals for all of the security capabilities addressed within GIAC certification topics such as auditing IT infrastructure, security incident handling, traffic analysis, and web-based services security. Learn more information concerning Progent's Global Information Assurance Certification Professional Assistance.