Computer Security and Compliance

Fast and Affordable Security Checkups for Small Businesses
Is your small business network keeping pace with today's security environment? Are you protecting your network assets? How difficult would it be for a hacker to break into your information system, and what steps can you take to prevent it? Progent has developed a fast and affordable way for small businesses to answer these questions without disrupting their network operations.

Progent's Network Security Inventory packages are fixed-price service bundles that rely on advanced network scanning technology and the certified expertise of Progent's security engineers to evaluate the vulnerability of your network and provide recommendations for simple ways you can mitigate your security risk. Progent offers two packages, the External Network Security Inventory and the Internal Network Security Inventory, which assess different aspects of network security exposure and which you can use separately or together. Both packages offer features designed for the needs of small businesses who want to take a more proactive role in making their networks safe from malicious assaults but who don't have the time or the budget to manage an exhaustive enterprise-class network security audit.

Top Features and Benefits of Progent's Security Inventory Packages for Small Business Networks
Progent's Security Inventory packages offer an array of features and benefits especially designed to address today's increasingly hostile security environment in which all business networks operate but also to take into account the financial and operational realties of small companies. Implemented together or separately, Progent's External and Internal security scanning packages help small businesses achieve a high level of network protection at little cost or hassle.

• Low-cost:
  Progent's Network Security Inventory packages are inexpensive and are offered at a set-price, so you know in advance what it will cost to understand the state of your network security. Potential attack vectors detected by Progent's security scans are typically easy to fix and involve configuration issues with network operating systems, applications, and devices. If you have not regularly utilized security scans in the past, you get a lot of bang for your buck. Generally, a great deal of security risk associated with small business networks can be substantially reduced at very little expense.
• Fast:
  The scanning, analysis, and reporting processes involved in Progent's Network Security Inventory packages can usually be completed in one business day. This fast turnaround can reduce the window during which your network is exposed to attack by allowing you to move quickly into remediation mode. This also reduces the stressful suspense management may feel not knowing whether information assets are safe, and minimizes the time that your network manager is diverted from other responsibilities. A combination of advanced scanning technology and experienced engineers allow Progent's security team to deliver results quickly and at low cost to the customer.
• Remote Scanning:
  The scanning phase of Progent's Network Security Inventory packages are managed remotely from a secure Progent site. In the case of the Internal Network Security Inventory package, the scan is itself run from an onsite machine made available by the customer. The setup procedure for external or internal scans can accomplished in minutes, and the collected data is analyzed offsite by Progent's certified security professionals. By utilizing remote tools to conduct the Network Security Inventory packages, Progent saves significant time and money, which in turn allows Progent to offer these packages at prices that small businesses can afford.
• Proactive:
  Progent's Network Security Inventory packages are not intended to detect and remove viruses or other malware resulting from a successful attack on your network, but to uncover common security gaps before they are exploited by malicious sources. Although larger enterprises routinely utilize third-party consulting firms like Progent to conduct vulnerability scans in order to benefit from an objective risk assessment, small businesses with limited IT budgets and technical expertise often wait until their networks are hacked before getting serious about security. By offering vulnerability scanning packages that are fast, affordable, and effective, Progent makes it a no brainer for small businesses to take the lead in protecting their network assets.
• Certified Security Engineers:
  Progent's security engineers have been certified by some of the industry's most prestigious standards institutions including the Information Systems Audit and Control Association (ISACA), the International Information Systems Security Certification Consortium (ISC), and the SANS Institute. Progent's security team has worked with major enterprises to assess and enhance network security. With Progent's Network Security Inventory packages, small businesses get the benefit of vulnerability assessments from world-class security professionals without requiring an enterprise-class IT budget.
• Effective:
  Progent's security engineers are familiar with the sophisticated tools and techniques hackers employ to break into information networks to steal and control resources and data. The majority of these intrusion attempts are based on exploiting security gaps that are surprisingly easy to block. Both of Progent's Network Security Inventory packages address a separate range of potential security vulnerabilities often found in small business IT networks. Either package will provide information to help you enhance your network protection. Using the external and the internal scan packages together will allow you to secure your network even more.
• Actionable Reporting:
  The data collected from Progent's Network Security Inventory scans are analyzed by a certified engineer on Progent's security team. As part of the package, Progent's security engineer will prepare and send a report that summarizes the results of the vulnerability scan and suggests mitigation procedures that can be performed by Progent, by your in-house IT support staff, or by a competent third-party security consulting firm. Any remedial work requested from Progent will be performed as a separate project for which Progent can provide a time estimate and for which Progent will bill at standard consulting rates.

Progent's security team will examine the scanned data, produce a report that summarizes and interprets the results, and make suggestions on efficient ways to reduce your exposure to attack. The external scan will not disrupt your ongoing network operations or noticeably impact your system performance. Progent offers this service package at a low set price that covers setup, scanning, analysis, reporting, and recommendations. The set price does not include remediation services which may be suggested. These follow-on services can be performed by any qualified security engineer and are available from Progent at standard consulting rates.

Internal Security Inventory Scan
Many security attacks originate from inside your company firewall and can be the result of careless employees who attach compromised laptops to your network, workers who try to access restricted information or gain unauthorized administration rights, or lurkers in close physical proximity to your wireless access points. Progent's Internal Network Security Inventory package tests for vulnerabilities within your firewall by looking for open ports and services that are not exposed to the outside world but that could be a source of trouble if improperly configured. The internal scan can be executed from any computer inside your security perimeter that you make temporarily available to Progent's security engineer. Progent will remotely download a virtual machine and the required scanning tools to the internal computer you have assigned, launch the scan, and transfer the collected data to a secure Progent site. Progent does not need to make an expensive onsite service call and the time required to install and subsequently remove the scanning software is negligible.

Progent's security engineer managing the Internal Security Inventory Scan will examine the scanned data and create a report that summarizes the results and suggests any mitigation measures that may be required. Progent offers this service package at a low set price that covers setup, scanning, analysis, reporting, and recommendations. The set price does not include remediation services which may be suggested. These follow-on services can be performed by any qualified security engineer and are available from Progent at standard consulting rates.

Download the Security Inventory Scan Datasheet
To download a single-page printable datasheet describing Progent's two set-price Security Inventory Scan service packages for small businesses, click:
Security Inventory Scanning Packages (PDF - 104 KB).

Additional Network Security Auditing Services Available from Progent
Progent offers a variety of additional services designed to check your network for vulnerabilities, verify your compliance with governmental or industry security standards, and mitigate critical gaps in your network's defenses:

• Enterprise Vulnerability Assessment Service Packages
  Progent can provide a range of set-price enterprise security assessment service packages created for corporations who need to comply with security standards required by state agencies or by customers. Progent's security assessment packages offer larger businesses an opportunity to get an objective opinion about the strength of their network security. For each security inventory or evaluation bundle, Progent engineers with high-level security credentials analyze and report on collected data and provide suggestions for effective improvements. An added-cost option for on-premises security engineers is available throughout United States.
• Stealth Penetration Testing
  Progent can perform in-depth penetration exercises without the knowledge of in-house IT resources. Unannounced Security Testing reveals whether in-place security monitoring mechanisms like intrusion detection alerts and event log tracking are correctly set up and actively managed. Progent security engineers can utilize various popular hacker techniques to expand attack vectors to acquire an understanding of the entire network environment and detect how many internal systems can be accessed and exploited. This type of vulnerability testing can show the full extent of the security flaws of an IT environment.
• Security Assessment Consulting
  Progent's expert network security assessment and compliance testing support services can help your business to validate your operations and governance policies and check your IT environment to allow you to design the maximum degree of protection into your information system. Progent's security consultants can also manually check your web-based business applications for security weaknesses and can conduct company-wide security audits to validate your compliance with key security standards including HIPAA, FISMA, and ISO.

• ProSight Active Security Monitoring: Next Generation Endpoint Protection and Ransomware Recovery
  Progent's ProSight Active Security Monitoring is an endpoint protection (EPP) solution that utilizes SentinelOne's next generation behavior-based analysis tools to defend endpoints and physical and virtual servers against modern malware attacks like ransomware and email phishing, which easily get by traditional signature-matching AV products. ProSight ASM safeguards on-premises and cloud resources and offers a unified platform to manage the entire malware attack progression including filtering, infiltration detection, mitigation, cleanup, and post-attack forensics. Key capabilities include one-click rollback using Windows Volume Shadow Copy Service (VSS) and real-time network-wide immunization against new threats. Progent is a SentinelOne Partner, reseller, and integrator. Learn more about Progent's ProSight Active Security Monitoring (ASM) next-generation endpoint protection and ransomware recovery with SentinelOne technology.

• ProSight Enhanced Security Protection (ESP): Unified Endpoint Protection
  Progent's ProSight Enhanced Security Protection managed services offer economical in-depth security for physical servers and virtual machines, workstations, mobile devices, and Microsoft Exchange. ProSight ESP utilizes adaptive security and advanced machine learning for round-the-clock monitoring and reacting to cyber threats from all attack vectors. ProSight ESP delivers two-way firewall protection, penetration alarms, device management, and web filtering through cutting-edge technologies packaged within one agent accessible from a unified console. Progent's data protection and virtualization experts can assist your business to plan and implement a ProSight ESP deployment that meets your company's specific requirements and that allows you achieve and demonstrate compliance with government and industry information security regulations. Progent will help you specify and configure policies that ProSight ESP will manage, and Progent will monitor your network and respond to alarms that call for immediate attention. Progent can also help you to install and test a backup and restore solution such as ProSight Data Protection Services (DPS) so you can recover quickly from a potentially disastrous security attack like ransomware. Read more about Progent's ProSight Enhanced Security Protection unified physical and virtual endpoint protection and Exchange email filtering.

• ProSight DPS: Managed Backup and Recovery
  Progent has worked with advanced backup/restore technology vendors to create ProSight Data Protection Services, a portfolio of subscription-based offerings that provide backup-as-a-service (BaaS). All ProSight DPS products automate and monitor your data backup operations and allow transparent backup and fast recovery of important files/folders, applications, images, and Hyper-V and VMware virtual machines. ProSight DPS helps your business avoid data loss caused by hardware failures, natural calamities, fire, cyber attacks like ransomware, user error, ill-intentioned insiders, or software bugs. Managed services in the ProSight DPS product line include ProSight Altaro VM Backup, ProSight 365 Total Backup (formerly Altaro Office 365 Backup), ProSight DPS ECHO Backup using Barracuda purpose-built hardware, and ProSight MSP360 Cloud and On-prem Backup. Your Progent consultant can assist you to identify which of these managed backup services are best suited for your network.

• ProSight Email Guard: Spam Filtering, Data Leakage Protection and Content Filtering
  ProSight Email Guard is Progent's email security solution that uses the services and infrastructure of top information security companies to provide web-based management and comprehensive security for all your email traffic. The hybrid architecture of Email Guard managed service integrates a Cloud Protection Layer with a local gateway appliance to offer complete defense against spam, viruses, Denial of Service (DoS) Attacks, Directory Harvest Attacks, and other email-borne threats. Email Guard's cloud filter acts as a first line of defense and blocks most unwanted email from reaching your security perimeter. This reduces your vulnerability to inbound threats and conserves network bandwidth and storage space. Email Guard's on-premises gateway device adds a further level of inspection for inbound email. For outbound email, the local security gateway provides AV and anti-spam protection, policy-based Data Loss Prevention, and email encryption. The local gateway can also assist Microsoft Exchange Server to track and safeguard internal email that stays within your security perimeter. Find out more about Progent's ProSight Email Guard spam filtering, virus blocking, email content filtering and data leakage prevention.

• ProSight WAN Watch: Infrastructure Management
  ProSight WAN Watch is an infrastructure management service that makes it simple and affordable for smaller organizations to map, monitor, enhance and debug their connectivity hardware like routers, firewalls, and access points plus servers, printers, endpoints and other devices. Using state-of-the-art Remote Monitoring and Management (RMM) technology, WAN Watch ensures that network diagrams are kept updated, captures and displays the configuration of almost all devices on your network, tracks performance, and sends alerts when issues are detected. By automating time-consuming management activities, ProSight WAN Watch can cut hours off common tasks such as making network diagrams, expanding your network, finding devices that require critical updates, or identifying the cause of performance bottlenecks. Find out more about ProSight WAN Watch infrastructure management consulting.

• ProSight LAN Watch: Server and Desktop Monitoring and Management
  ProSight LAN Watch is Progent's server and desktop remote monitoring service that uses state-of-the-art remote monitoring and management (RMM) techniques to keep your IT system operating at peak levels by tracking the health of vital computers that power your business network. When ProSight LAN Watch detects an issue, an alert is transmitted immediately to your specified IT personnel and your assigned Progent consultant so that all looming problems can be resolved before they can impact your network Find out more details about ProSight LAN Watch server and desktop monitoring services.

• ProSight Virtual Hosting: Hosted VMs at Progent's Tier III Data Center
  With Progent's ProSight Virtual Hosting service, a small or mid-size organization can have its key servers and applications hosted in a protected fault tolerant data center on a fast virtual host configured and managed by Progent's network support experts. With the ProSight Virtual Hosting service model, the customer owns the data, the operating system software, and the apps. Because the system is virtualized, it can be moved easily to a different hosting environment without a lengthy and difficult configuration procedure. With ProSight Virtual Hosting, you are not locked into a single hosting provider. Find out more details about ProSight Virtual Hosting services.

• ProSight IT Asset Management: Network Documentation Management
  Progent's ProSight IT Asset Management service is a cloud-based IT documentation management service that makes it easy to capture, maintain, retrieve and safeguard information related to your network infrastructure, processes, applications, and services. You can quickly locate passwords or serial numbers and be alerted automatically about upcoming expirations of SSLs or warranties. By cleaning up and organizing your IT documentation, you can eliminate up to 50% of time thrown away searching for critical information about your network. ProSight IT Asset Management includes a common repository for storing and collaborating on all documents related to managing your network infrastructure such as standard operating procedures and How-To's. ProSight IT Asset Management also offers a high level of automation for gathering and associating IT data. Whether you're making improvements, performing regular maintenance, or responding to a crisis, ProSight IT Asset Management gets you the knowledge you require when you need it. Find out more details about ProSight IT Asset Management service.

• Progent's Patch Management: Software/Firmware Update Management Services
  Progent's managed services for patch management offer businesses of any size a versatile and cost-effective solution for assessing, testing, scheduling, applying, and documenting software and firmware updates to your ever-evolving information network. In addition to maximizing the protection and functionality of your computer environment, Progent's software/firmware update management services allow your in-house IT team to focus on more strategic projects and activities that deliver maximum business value from your network. Read more about Progent's patch management services.

• ProSight Duo Multi-Factor Authentication: Access Security, Endpoint Policy Enforcement, and Protected Single Sign-on (SSO)
  Progent's Duo MFA service plans incorporate Cisco's Duo cloud technology to defend against compromised passwords by using two-factor authentication. Duo supports one-tap identity verification on Apple iOS, Android, and other personal devices. Using 2FA, when you log into a secured online account and give your password you are asked to verify who you are on a device that only you have and that uses a different ("out-of-band") network channel. A broad selection of out-of-band devices can be used as this added form of ID validation including an iPhone or Android or watch, a hardware/software token, a landline phone, etc. You can designate multiple validation devices. For more information about ProSight Duo identity validation services, go to Duo MFA two-factor authentication services for access security.

Progent's ProSight Ransomware Preparedness Report Service
Progent's ProSight Ransomware Preparedness Report service is an affordable service centered on a brief discussion with a Progent backup/recovery consultant. The interview is designed to evaluate your company's preparedness to stop or recover rapidly after an attack by a ransomware strain like Ryuk, WannaCry, MongoLock, or Locky. Progent will work with you directly to gather information about your existing antivirus tools and backup/recovery platform, and Progent will then produce a custom Basic Security and Best Practices Report describing how you can follow best practices to deploy a cost-effective AV and backup system that meets your company's needs. For more information, visit The ProSight Ransomware Preparedness Report.

Contact Progent for Network Security Auditing
If you want more information about Progent's network security inventory service bundles, call Progent at 800-993-9400 or go to Contact Progent.