Data Security and Compliance

Introduction to Progent's Security Consulting Services
Progent's industry certified network security and compliance experts can provide a broad range of services intended to help organizations of any size to identify and eliminate security vulnerabilities, defend against attacks, remediate any problems caused by a breach of security, and comply with regulatory requirements for protecting data and reporting incidents. Progent can provide world-class guidance for key cybersecurity and restoration technologies including AI-driven EDR (End Point Protection and Response), MDR (Managed Detection and Response), full system restore validation and testing, immutable backup, and off-site backup.

Progent can provide a choice of service modes:

• On-demand online and on-premises support invoiced by the minute
• On-going fully managed services invoiced at a low flat monthly fee
• Set-price service bundles for a one-time security assessment
• Urgent ransomware recovery. Progent will submit a bid after an evaluation of the damage.
  (If your system has been breached by any version of crypto-ransomware, don't panic. Get fast help by calling Progent's 24x7 Ransomware Hot Line at 800-462-8800.)

Delivery alternatives for Progent's as-needed support include:

• Online Security Support
  The majority security-related problems can be handled online via a mix of phone help and a remote connection between Progent's Technical Response Center (TRC) and a client's network. Progent's TRC group can provide remote security help by offering efficient access to consultants with the background and technical resources to resolve many of the most difficult issues quickly, making your support costs affordable and minimizing downtime.
• On-premises Security Services
  For cases where onsite assistance is required, Progent can dispatch a technical expert to major cities across the U.S. Progent can also send a security consultant with high-level certifications and advanced skills to any site in the U.S.

ProSight Fixed-price Managed Services for Information Assurance
Progent's low-cost ProSight line of network management outsourcing services is intended to provide small and mid-size businesses with enterprise-class support and state-of-the-art technology for all aspects of information assurance and compliance. ProSight managed services available from Progent include:

• ProSight Active Security Monitoring (ASM): Next Generation Endpoint Protection and Ransomware Defense
  ProSight Active Security Monitoring (ASM) is an endpoint protection solution that utilizes SentinelOne's cutting edge behavior analysis technology to guard endpoint devices and physical and virtual servers against modern malware attacks like ransomware and email phishing, which easily escape legacy signature-matching anti-virus products. ProSight ASM protects on-premises and cloud-based resources and provides a single platform to automate the complete threat lifecycle including filtering, identification, containment, remediation, and post-attack forensics. Key capabilities include single-click rollback with Windows Volume Shadow Copy Service and automatic system-wide immunization against newly discovered threats. Progent is a SentinelOne Partner, reseller, and integrator. Learn more about Progent's ProSight Active Security Monitoring (ASM) endpoint protection and ransomware defense powered by SentinelOne technology.

• ProSight Reporting: Real-time Reporting for Ticketing and Network Monitoring Applications
  ProSight Reporting is an expanding suite of real-time and in-depth reporting plug-ins created to work with the industry's top ticketing and remote network monitoring platforms such as ConnectWise Manage, ConnectWise Automate, Customer Thermometer, Auvik, and SentinelOne. ProSight Reporting incorporates Microsoft Graph and utilizes color coding to surface and contextualize key issues such as inconsistent support follow-through or endpoints with missing patches. By exposing ticketing or network health concerns clearly and in near-real time, ProSight Reporting enhances productivity, reduces management hassle, and saves money. For details, see ProSight Reporting for ticketing and network monitoring platforms.

• ProSight Enhanced Security Protection (ESP): Unified Endpoint Protection
  ProSight Enhanced Security Protection (ESP) managed services deliver affordable in-depth security for physical servers and VMs, desktops, mobile devices, and Exchange Server. ProSight ESP uses adaptive security and advanced machine learning for round-the-clock monitoring and responding to cyber assaults from all vectors. ProSight ESP provides firewall protection, penetration alerts, device control, and web filtering through leading-edge tools incorporated within a single agent accessible from a unified control. Progent's data protection and virtualization consultants can assist you to design and implement a ProSight ESP environment that meets your company's specific needs and that allows you achieve and demonstrate compliance with government and industry information security standards. Progent will help you define and implement security policies that ProSight ESP will manage, and Progent will monitor your network and react to alerts that call for urgent action. Progent's consultants can also assist you to install and verify a backup and disaster recovery solution such as ProSight Data Protection Services (DPS) so you can get back in business quickly from a destructive cyber attack like ransomware. Read more about Progent's ProSight Enhanced Security Protection (ESP) unified endpoint protection and Microsoft Exchange filtering.

• ProSight Data Protection Services: Managed Backup
  ProSight Data Protection Services provide small and medium-sized organizations an affordable and fully managed service for reliable backup/disaster recovery (BDR). For a low monthly cost, ProSight Data Protection Services automates and monitors your backup processes and enables rapid recovery of vital files, apps and virtual machines that have become unavailable or damaged as a result of component breakdowns, software glitches, natural disasters, human error, or malicious attacks such as ransomware. ProSight Data Protection Services can help you protect, recover and restore files, folders, applications, system images, plus Microsoft Hyper-V and VMware virtual machine images. Critical data can be protected on the cloud, to an on-pr1mises storage device, or to both. Progent's BDR specialists can deliver advanced expertise to set up ProSight Data Protection Services to be compliant with government and industry regulatory requirements like HIPAA, FIRPA, PCI and Safe Harbor and, whenever needed, can assist you to recover your critical data. Learn more about ProSight Data Protection Services Managed Cloud Backup and Recovery.

• ProSight Email Guard: Inbound and Outbound Spam Filtering, Data Leakage Protection and Content Filtering
  ProSight Email Guard is Progent's email security platform that incorporates the technology of leading information security companies to deliver centralized management and comprehensive security for your email traffic. The powerful structure of Progent's Email Guard managed service integrates a Cloud Protection Layer with a local gateway device to provide complete defense against spam, viruses, Denial of Service Attacks, Directory Harvest Attacks (DHAs), and other email-borne threats. The Cloud Protection Layer serves as a preliminary barricade and blocks the vast majority of unwanted email from making it to your security perimeter. This reduces your vulnerability to inbound threats and saves system bandwidth and storage space. Email Guard's onsite gateway appliance adds a further layer of inspection for incoming email. For outgoing email, the onsite security gateway offers anti-virus and anti-spam filtering, protection against data leaks, and encryption. The local security gateway can also assist Microsoft Exchange Server to monitor and safeguard internal email that stays inside your security perimeter. Learn more about Progent's ProSight Email Guard spam filtering, virus blocking, content filtering and data leakage prevention.

• ProSight Duo MFA: Two-Factor Identity Authentication
  ProSight Duo is a family of managed service plans utilizing top-ranked technology developed by Duo, a Cisco company, to build two-factor authentication solutions. Two-factor authentication uses an outside-channel endpoint to confirm identity, providing a second level of protection beyond merely passwords. This counters the most common causes of cybersecurity break-ins such as phishing, brute-force password attacks, and burglarized credentials. Duo's push technology can save time and reduce annoyance by allowing users to confirm their identity as easily as clicking "Approve" on the authentication box on their unique endpoint, which can be an Android or iOS smartphone, a smart watch, or other supported device. This single-click verification process eliminates the requirement to find an email or text message and manually copy a temporary security passcode. Learn more about Progent's ProSight Duo MFA multi-factor identity authentication service plans.

• ProSight WAN Watch: Network Infrastructure Management
  ProSight WAN Watch is a network infrastructure management service that makes it simple and affordable for small and mid-sized organizations to diagram, track, optimize and debug their connectivity hardware such as routers and switches, firewalls, and load balancers plus servers, printers, endpoints and other devices. Using state-of-the-art Remote Monitoring and Management (RMM) technology, ProSight WAN Watch ensures that infrastructure topology maps are always updated, copies and displays the configuration of virtually all devices connected to your network, tracks performance, and sends notices when potential issues are discovered. By automating complex management processes, ProSight WAN Watch can cut hours off ordinary chores such as network mapping, expanding your network, locating devices that need critical updates, or isolating performance issues. Learn more details about ProSight WAN Watch network infrastructure monitoring and management consulting.

• ProSight LAN Watch: Server and Desktop Monitoring
  ProSight LAN Watch is Progent's server and desktop remote monitoring service that incorporates advanced remote monitoring and management (RMM) techniques to keep your network running at peak levels by tracking the health of critical assets that drive your business network. When ProSight LAN Watch detects a problem, an alert is sent immediately to your designated IT management personnel and your Progent engineering consultant so all potential problems can be addressed before they can disrupt your network Learn more details about ProSight LAN Watch server and desktop monitoring consulting.

• ProSight Virtual Hosting: Hosted Virtual Machines at Progent's Tier III Data Center
  With ProSight Virtual Hosting service, a small business can have its critical servers and apps hosted in a secure fault tolerant data center on a high-performance virtual machine host configured and maintained by Progent's network support professionals. With Progent's ProSight Virtual Hosting service model, the customer owns the data, the OS platforms, and the applications. Because the environment is virtualized, it can be ported easily to a different hosting environment without requiring a lengthy and technically risky reinstallation process. With ProSight Virtual Hosting, your business is not locked into one hosting service. Find out more details about ProSight Virtual Hosting services.

• ProSight IT Asset Management: Network Infrastructure Documentation Management
  ProSight IT Asset Management service is an IT infrastructure documentation management service that makes it easy to create, maintain, retrieve and protect data about your IT infrastructure, procedures, applications, and services. You can quickly find passwords or serial numbers and be alerted automatically about upcoming expirations of SSL certificates or warranties. By cleaning up and organizing your IT infrastructure documentation, you can save up to half of time spent trying to find vital information about your network. ProSight IT Asset Management features a centralized repository for storing and sharing all documents related to managing your business network like standard operating procedures (SOPs) and self-service instructions. ProSight IT Asset Management also offers advanced automation for gathering and associating IT data. Whether you're making improvements, performing regular maintenance, or reacting to a crisis, ProSight IT Asset Management delivers the information you require when you need it. Learn more details about ProSight IT Asset Management service.

The ProSight Ransomware Preparedness Report
The ProSight Ransomware Preparedness Report service is a low-cost service based on a brief discussion with a Progent information assurance consultant. The interview is designed to help assess your company's preparedness either to block or recover rapidly following an attack by a ransomware variant such as Ryuk, WannaCry, NotPetya, or Locky. Progent will work with you directly to gather information concerning your current antivirus tools and backup platform, and Progent will then deliver a written Basic Security and Best Practices Report document describing how you can apply best practices to build an efficient security and backup system that meets your company's requirements. For more information, see The ProSight Ransomware Preparedness Report Service.

Fixed-price Security Evaluation and Validation Packages
Progent has put together a number of set-price security and compliance assessment packages that provide exceptional value by deploying Progent's advanced network monitoring and analysis software as well as Progent's technical skills to produce an objective and comprehensive assessment of your network security posture.

• Security Assessment Service Packages for Small Businesses
  Progent offers two value-priced security inventory scanning service packages intended to enable small organizations to get a professional security evaluation from an accredited security consultant. With Progent's External Security Inventory Scan, an engineer administers an extensive examination of your network from beyond your corporate firewall to determine potential risks in the security posture you present to the outside world. With Progent's Internal Security Inventory Scan, a certified security consultant executes a system scan from an authorized computer inside your corporate firewall to evaluate your exposure to inside assaults. The two security inventory scans are configured and run from a secured external site. The project is administered by an engineer who has earned high-level security certifications and who creates a report that describes and interprets the information captured by the security scan and recommend practical improvements where appropriate.
• Security Vulnerability Assessment Bundles for Enterprises
  Progent offers three levels of set-price security assessment service bundles intended for enterprises who want to meet compliance standards required by state or industry regulators. Progent's security assessment service packages offer larger businesses a chance to obtain an objective assessment at the viability of their security profile. For every security assessment bundle, Progent engineers with top security credentials study and report on captured data and provide suggestions for cost-effective improvements. All the network security assessment bundles include an added-cost option for onsite consultants anywhere in the United States.
• Expertise with Horizon3.ai's NodeZero Penetration Testing Solutions
  NodeZero from Horizon3.ai is a cutting-edge penetration test (pentest) product family that can deliver continuous, concurrent, automated assessment of your network so you can identify, prioritize, remediate, and confirm cybersecurity vulnerabilities before malicious hackers can exploit them. Progent offers the skills of a NodeZero Certified Operator (NCO) who can help you to deploy NodeZero to perform thorough penetration tests of your perimeter and your internal network in order to evaluate your current security profile. Progent's NodeZero experts can also assist you to harden your existing network security and can help you to plan and implement a cohesive cybersecurity strategy that streamlines management and delivers optimum protection for on-prem, cloud-based, and perimeter IT assets. To learn more details about Progent's vulnerability analysis solutions powered by on NodeZero's pentest products, refer to Consulting Services for NodeZero's Penetration Test Platform.
• Stealth Penetration Testing
  Stealth penetration testing, often referred to as PEN testing, is an accepted tool for helping businesses to find out how vulnerable their IT environments are to modern attacks. Progent's stealth penetration testing services check how well your existing security policies and technologies resist authorized but unannounced intrusion attempts managed by Progent's experienced security specialists using cutting-edge hacking methods. Find out about Progent's stealth penetration testing (PEN Test) services.

Our Network Has Been Hacked: What Are We Supposed to Do?
If you are currently experiencing a security emergency and you do not have a formal response procedure, refer to Progent's Remote Technical Help to find out how to get fast help. Progent provides remote assistance from skilled engineers and can refer problems to certified security experts if required. Your business does not need to be a current Progent client to receive emergency help for a security problem, but you can register as a Progent customer ahead of time at no cost and your status as a current client can save precious time when there is an emergency.

Typically, smaller organizations have not documented a response plan in case of a damaging security breach. This is risky, because the damage from a successful security attack can be more catastrophic for a small company than for a large corporation. Progent's security consultants can help your business to design a sensible response and incident reporting plan that reduces the IT system downtime resulting from a security breach. The step-by-step post-attack handling procedure outlined by GIAC (Global Information Assurance Certification) is Progent's suggested procedure for reacting to a major security penetration.

High-value Security Services Offered by Progent
Progent's seasoned engineers offer advanced support in key facets of computer security such as:

• Security Vulnerability Audits and Security Compliance Assessment
  Progent provides experience with security evaluation software such as Microsoft Baseline Security Analyzer or LANguard for performing a set of comprehensive network tests to uncover potential security gaps. Progent has extensive skills with monitoring tools and can help your company to understand assessment results and respond efficiently. Progent's certified security engineers also can perform web application validation and can conduct expert assessments of enterprise-wide security to validate your organization's compliance with key global security specifications such as FISMA, NIST, and ISO. In addition, Progent can evaluate the effectiveness of your wireless protection covering stationary wireless appliances as well as portable devices. Learn the details concerning Progent's Security Vulnerability Evaluation and Security Compliance Testing.
• Planning, Building, and Validating Protected Networks
  Any business ought to have a thoroughly thought out security strategy that incorporates both preventive and responsive steps. The proactive plan is a collection of precautions that works to minimize vulnerabilities. The reactive strategy specifies procedures to assist IT staff to assess the losses resulting from an attack, remediate the damage, record the experience, and revive business functions as quickly as possible. Progent can show you how to build security into your company operations, set up auditing utilities, create and build a safe IT infrastructure, and propose procedures and policies that will optimize the safety of your information system. Progent's security experts are ready to help you to set up a firewall, design secure offsite connectivity to email and files, and install an efficient VPN. If you are looking for an economical option for jobbing out your network security administration, Progent's 24x7 Monitoring Packages feature continual online server tracking and quick resolution of problems.
• System Restoration and Failure Analysis
  Progent provides skill in restoring systems and devices that have been compromised, are in question, or have failed as a result of a security breach. Progent can help evaluate the losses caused by the attack, return your company to normal business operations, and retrieve data compromised as a result of the breach. Progent's certified specialists can also oversee a thorough forensic evaluation by going over activity logs and using other advanced assessment tools. Progent's background with security consulting minimizes your downtime and permits Progent to propose efficient strategies to prevent or mitigate new attacks.
• Cisco ASA 5500-X Firewalls with Firepower, ASA 5500 Firewalls, and PIX Security Appliances Configuration and Troubleshooting
  The latest generation of ASA 5500-X Series of firewalls with Firepower Services deliver substantially more performance than Cisco's earlier PIX and ASA 5500 firewalls and have superseded the ASA 5500 and PIX security appliances for all new deployments. Following Cisco's acquisition of Sourcefire, the whole line of ASA 5500-X devices can be provisioned to enable Firepower Services, built on Sourcefire's Snort technology, which is the world's most deployed network intrusion protection system. Firepower services provide enhanced capabilities including advanced malware protection (AMP), URL filtering, dynamic threat analytics, and automation. Progent's Cisco-premier CCIE network consultants can help your company to manage your current PIX or ASA 5500 firewalls or upgrade to Cisco ASA 5500-X firewalls with Firepower Services. Progent's consultants offer online and onsite support for ASA 5500-X firewalls with Firepower Services and can assist your business to design, configure, tune, administer and troubleshoot firewall solutions based around Cisco ASA 5500-X firewalls with Firepower Services. Learn additional information about ASA 5500-X Firewalls with Firepower configuration and troubleshooting support.
• Additional Firewall and Virtual Private Network Solutions Offered by Progent
  In addition to supporting a broad array of network security technologies from Microsoft and Cisco, Progent can provide small companies expert support for security products from other major firewall and Virtual Private Network suppliers by delivering services such as:
  • Palo Alto Networks support
    
  • Check Point Software Technologies Ltd help
  • WatchGuard consulting
  • Juniper Networks Inc integration expertise
  • SonicWall engineering services
  • Fortinet FortiGate Firewall engineering services
    
  • Symantec technical assistance
  • Barracuda CloudGen Firewall Consulting
• SIEM Security Information and Event Management Solutions
  Security information and event management (SIEM) software and services are designed to interpret the enormous amounts of information collected in security event records generated by multiple sources such as network appliances, servers, and application software and tools. SIEM software analyzes the security event records from these diverse sources and creates consolidated reports of security incidents as mandated by government regulations and business compliance standards. Progent's GIAC-certified network security experts and Cisco CCIE certified network infrastructure consultants can help businesses to design, deploy and manage a SIEM solution that enables them to see the progress of security incidents and comply with security incident reporting requirements. (Visit Progent's SIEM solutions.)
• Software Update Management Solutions
  Software update management includes applying software or firmware updates to operating systems and apps, servers and endpoints, peripherals such as printers and scanners, network appliances such as routers and Wi-Fi APs, and Internet-of-Things devices such as sensors and health monitors. Timely and properly managed updating optimizes cybersecurity, regulatory compliance, availability, and functionality. Sporadic software update management can result in security vulnerabilities, compatibility problems, sluggish or inconsistent performance, unnecessary downtime, or loss of key features. Progent's managed services for patch management provide organizations of all sizes a versatile and affordable alternative for assessing, validating, scheduling, applying, and documenting software and firmware updates to your dynamic information system. (See Progent's software update management services.)

• CISM Security Consulting Services
  Certified Information Security Manager identifies the fundamental competencies and worldwide benchmarks of performance that computer security professionals are expected to achieve. CISM provides business management the confidence that those who have been awarded their accreditation have the experience and knowledge to offer efficient security administration and consulting services. Progent can provide a CISM-certified support professional to help your enterprise in critical security areas including data protection governance, risk management, data protection process management, and crisis handling management. Read additional details concerning Progent's Certified Information Security Manager (CISM) Security Consulting Assistance.

• CISSP Security Consulting Expertise
  Progent's CISSP consultants are security specialists who have earned CISSP certification as a result of verified experience, rigorous study, and exhaustive testing. CISSP qualification indicates expertise in a worldwide standard for information security. American National Standards Institute has given the CISSP status official recognition in the field of IT security under ISO/IEC 17024. Fields of knowledge included within CISSP include security management procedures, security design and models, connection permission systems, software development security, operations security, physical security, cryptography, telecommunications, Internet security, and disaster recovery planning. Find out additional details concerning Progent's Certified Information Systems Security Professionals (CISSP) Consulting Services.

• CISSP-ISSAP Cybersecurity Architecture Consulting Expertise
  Progent's CISSP-ISSAP Premier security architecture consultants have been awarded ISSAP accreditation as a result of thorough examination and extensive hands-on work with information security architecture. ISSAP security experts have acquired comprehensive knowledge of access management systems and methodologies, telecommunications and network protection, cryptography, requirements analysis, BCP and disaster recovery planning (DRP), and physical security. Progent's CISSP-ISSAP-premier security consultants can assist your business with all phases of secure network architecture. Learn additional information concerning Progent's ISSAP Certified Secure IT Infrastructure Consulting Assistance.

• CISA Professional Expertise
  The Certified Information Systems Auditor (CISA) credential is a globally recognized qualification that represents expertise in IS security audit and control. Certified by the American National Standards Institute (ANSI), the CISA accreditation requires that candidates undergo a comprehensive test given by the ISACA international professional association. Progent can provide the services of a CISA-Premier security audit engineer trained to help companies in the fields of IS audit process, IT enforcement, network assets and infrastructure lifecycle, information technology service delivery, protecting data resources, and disaster recovery planning. Learn the details about Progent's Certified Information Systems Auditor (CISA) Consulting Assistance.

• CRISC Network Risk Mitigation Consultants
  The CRISC certification program was established by ISACA to validate an IT professional's ability to plan, implement, and support IS controls to mitigate network risk. Progent can provide the services of a CRISC-certified engineer to help you to create and execute a business continuity or disaster recovery plan based on industry best practices promoted by CRISC and crafted to align with your organization's risk tolerance, business goals, and IT budget. Progent's network risk management expertise is a good fit the support available from Progent's CISA-Certified consultants for impartially assessing your IT control mechanisms and with the services of Progent's CISM-certified consultants for designing security policies. Read the details about Progent's CRISC-certified Network Risk Management Support.

• Global Information Assurance Certification Professional Services
  GIAC (Global Information Assurance Certification) was established in 1999 to certify the skill of network security engineers. GIAC's mission is to make sure that a certified security consultant has the skills appropriate to deliver services in vital categories of system, data, and application software security. GIAC accreditations are recognized by companies and institutions all over the world including and the United States National Security Agency (NSA). Progent can provide the help of GIAC certified consultants for all of the security capabilities addressed within GIAC certification programs such as assessing security systems, security incident response, intrusion detection, and web services security. Get more information about Progent's GIAC (Global Information Assurance Certification) Professional Expertise.