EcomNets has developed a suite of capabilities for managed security services (MSS). A certified managed security service provider (MSSP) EcomNets is recognized as a “leader” in MSSP services. Our proven Managed security services (MSS) is a systematic approach to managing our client’s security needs. Our services may be conducted in house or remotely and provide for overseeing our client’s network and information system security. Specific functions of our managed security service offerings include: round-the-clock monitoring and management of intrusion detection systems and firewalls; overseeing patch management and upgrades; performing security assessments and security audits; and responding to critical emergencies.
EcomNets has demonstrated expertise in delivering customized assistance and assessment of business risks, key business requirements for security and the development of security policies and processes. Working with the client’s Chief Security Systems Officer (CSSO), or acting as our customers CSSO, it may include comprehensive security architecture assessments and design (include technology, business risks, technical risks and procedures). Consulting may also include security product integration and On-site incident response and forensics.
Remote perimeter management
EcomNets provides comprehensive services to install and upgrade the firewalls, Virtual Private Networks (VPN) and intrusion detection hardware and software, commonly performing configuration changes on behalf of our customers.
Managed security monitoring
EcomNets has developed critical processes and infrastructure to manage and conduct the day-to-day monitoring and interpretation of important system events throughout the network, including unauthorized behavior, malicious hacks and denials of service (DoS), anomalies and trend analysis. It is the first step in an incident response process.
Penetration and vulnerability testing
Critical to the safety and security of any network, EcomNets provides the critical capability to conduct one-time or periodic software scans or hacking attempts in order to find vulnerabilities in a technical and logical perimeter. Customized to specific client requirements, these tests can be tailored to assess security throughout the network, or accurately reflect personnel-related exposures due to disgruntled employees, social engineering, etc. We conduct penetration tests to determine how well client organization’s security policies protect assets by trying to gain access to networks and information assets in the same way a hacker would. These tests can range from an overview of the security environment to attempted “hacking” with the intent of obtaining investigative information.
This service includes the monitoring of event logs not for intrusions, but change management. This service will identify changes to a system that violate a formal security protocol or policy for example, if a rogue administrator grants themself too much access to a system. EcomNets measures compliance to an industry-standard technical risk model, which we have validated through numerous client engagements.