NETWORK INTRUSION PREVENTION with iSENSOR

secureworks.com

What is Network Intrusion Prevention?Network Intrusion Prevention is one of the most important steps

you can take to protect your organization from unauthorized

access. By defending the edge of your network, you are best able

to deter both targeted and random attacks that may compromise

your systems. Network Intrusion Prevention from SecureWorks®

employs sophisticated analysis and blocking techniques including:

• Signature deployment

• Anomaly detection

• Protocol recognition

• Behavior-based heuristics

• Human analysis of patterns

Why Implement Network Intrusion Prevention as a Service?You can certainly purchase devices that promise network intrusion

prevention. However, it is difficult for organizations to respond to

alerts, apply continuous updates and provide vigilant monitoring

24x7. Our clients have found it more effective to augment their

staff with our team of Security Analysts who can ensure that they

are protected from new and emerging threats.

Integrated Security Management ProcessIntrusion Prevention is one component of an integrated, defense-

in-depth security strategy delivered by SecureWorks that

includes full management of firewalls, network IPS and IDS, host

IPS, encrypted email, 24x7x365 security monitoring, security

information management, vulnerability scanning, Web application

scanning, third-party compliance risk management, security

and risk consulting, and global threat intelligence. SecureWorks

enhances your organization’s safety by ensuring that protection

is implemented with a continuous process that reflects a rapidly

changing business and security landscape.

Service Benefits

Prevent attacks before they compromise your network

Update automatically against the newest threats

Protect yourself around the clock without adding

headcount

Allow legitimate traffic to flow uninterrupted

“We decided to implement SecureWorks when a

neighboring company was attacked and blackmailed

for the return of stolen account numbers. Our service

was up in an hour and has been 100 percent effective in

protecting us.”

- Client, Financial Services

Midsize Business Solutions

secureworks.com

NETWORK INTRUSION PREVENTION with iSENSOR

secureworks.com

Service Scope• iSensorTM appliance at your site

• 24x7 real-time monitoring from our Security

Operations Centers

• Protection against hacker attempts before they

compromise your network

• Continuous updating of attack signatures

• Access to the SecureWorks Portal, an online

tool designed for account management, iSensor

configuration changes and network activity reports

• Customizable escalation procedures

Reporting• Immediate, graphic reports with clear explanations of

intrusion attempts

• Secure access to reporting and account administration

through two-factor authentication

• Multiple layers of reports for more, or less, information

depending on your preference

Executive-level dashboards graphically present key metrics that are both informative and actionable, enabling you to make better security decisions and improve your security posture. You can also easily drill down from the dashboards to access detailed, in-depth reports.

• iSensor appliance installs in less than an hour.

• No technical expertise required.

secureworks.com

NETWORK INTRUSION PREVENTION with iSENSOR

Regulation requirements• Safeguard customer records (GLBA)

• Ensure confidentiality of patient records (HIPAA)

• Gather and analyze information on new threats and

vulnerabilities, and demonstrate effectiveness of

existing security controls (FFIEC)

• Assist in identifying hackers (NCUA)

• Encrypt electronically transmitted and stored

customer data (FIL)

• Protect against threats to confidential customer

records (OCC)

Comprehensive reporting is provided via the Web-based SecureWorks Portal. Reports can be easily customized.

“An effective IPS system must:

1) Not disrupt normal operations

2) Block malicious actions using multiple algorithms

3) Have the wisdom to know the difference between

attack events and normal events.”

- Gartner Group

NETWORK INTRUSION PREVENTION with iSENSOR

secureworks.com

The SecureWorks Security Operations Centers SecureWorks’ five integrated Security Operations Centers are

staffed 24x7 by a highly certified team of Security Analysts.

We require all of our analysts to hold the SANS GIAC GCIA

(SANS GIAC Certified Intrusion Analyst) certification. Our analysts

also hold a variety of security industry and product certifications

including CISSP, CCNA, CCSE, CCSA, MCSE, etc.

Advanced Correlations and AnalysisSecureWorks uses our proprietary Sherlock Security

Management Platform to perform advanced correlation and

analysis. This powerful technology correlates all activity across

our iSensor appliance and virtually any security technology to

detect both known and emerging threats in real time. The Platform

also fully leverages the knowledge we gain from monitoring the

networks of more than 3,000 clients, allowing us to take what we

learn at one of our clients (for example, when we discover a new

threat) and apply it across our entire client base. This ensures that

your assets are protected from the very latest emerging threats.

SecureWorks is part of the International FIRST Response TeamThe Forum of Incident Response and Security Teams (FIRST) is

the premier organization and recognized global leader in incident

response. FIRST brings together a variety of computer security

incident response teams from government, commercial and

educational organizations. FIRST aims to foster cooperation and

coordination in incident prevention, stimulate rapid reaction to

incidents and promote information sharing among members and

the security community at large.

Copyright © 2009-2011 SecureWorks, Inc. All rights reserved.SecureWorks, Counter Threat Unit (CTU), iSensor, iScanner, Sherlock, Inspector, LogVault and Compliance Central are either registered trademarks or service marks, or other trademarks or service marks of SecureWorks, Inc. in the United States and in other countries. All other products and services mentioned are trademarks of their respective companies. This document is for illustration or marketing purposes only and is not intended to modify or supplement any SecureWorks’ specifications or warranties relating to these products or services. SecureWorks is an Equal Opportunity Employer.

DS-0111

24x7 monitoring of your security environment with

dynamic updates to protect you from new threats

Compliance reporting that is ideal for auditors and

examiners

Identifies the control and provides evidence

of adherence

Easy-to-understand operational reports

Forum of IncidentResponse andSecurity Teams

Service Features

secureworks.com