Network security solutions
The SAS Group’s network security solutions provide scalable defense against unsolicited and unauthorised network access and access to network data and, our expertise in network convergence and unified communications means, we can also offer the same level of protection for VoIP and IP telephony networks. Developed in accordance with ISO17799, our team of security specialists is qualified to deliver our complete range of solutions, including security auditing, benchmarking and penetration testing, fixed and wireless network security design, security monitoring and incident management, and policy development.
Solution features
Security penetration testing analyses security vulnerabilities in the network and business environment, and provides certification for regulatory and auditory purposes. We cover all Internet, communications and wireless security, and assesses physical location and social engineering risks.
Security benchmarking examines system configurations, and patch and firmware levels, and compares these with current industry standards and best practise, to highlight systems at risk and identify remedial requirements.
Security monitoring is a fully managed interactive surveillance and incident handling solution for single or multi-site network installations. Our solution focuses on traffic monitoring, intrusion detection, email and web content filtering, firewall scanning, change management, testing, and availability analysis.
Fixed and wireless security design delivers future-proof resilience to new and existing infrastructures, and ensures that available services are restricted to authorised network components.
Remote access security offers design and implementation solutions to guarantee un-compromised security for network connections via mobile or distributed devices.
Security update services provide expert consultancy on policy design and support for all network points of presence to external systems, including software selection. We also provide implementation services for system benchmarking and remedial and migration work.
Security policy services focus on policy development, compliance auditing and education, and policy testing and enforcement.
Delivery specifications
Security penetration testing
- Analysis and documentation of network infrastructure and security environments
- Development and project management of penetration test plan
- Implementation of Internet, communications and wireless testing modules
- Environment and social engineering risk assessment
- Security benchmarking of network architecture and ICT system configurations and patch/firmware levels
- Security policy testing, enhancement and development
Security benchmarking
- Analysis of ICT systems against industry standards for patch levels, security fixes and firmware levels
- Analysis of hardware and software configurations against manufacturer guidelines
- Analysis of network architecture design against security standards and best practise
Security monitoring
- Analysis and documentation of network infrastructure
- Analysis of SLAs and supplier contracts and metrics against actual network performance and security levels
- Benchmarking current security levels against industry standards and best practise
- Recommendations for security measures
- Analysis of priority systems and intervals for monitoring
- Development of incident handling and reporting procedures
- Implementation of SNMP traps and other real-time and manual monitoring tools
- Management and implementation of contingency plans and diagnostics
- Analysis and reporting on security, performance and availability indicators and trends
Fixed and wireless security design
- Infrastructure analysis and security benchmarking
- Network infrastructure design for WAN, MAN, LAN, PAN and remote access
- Specification of network components, authentication systems, network standards and applications security
- Coordination of manufacturer network design sign off
- Infrastructure migration planning (including fallback)
- Development of security policies and change control
- Specification and design of security systems maintenance schedule
Remote access security
- Benchmarking existing remote access design, authentication systems and monitoring systems against industry standard for best practise
- Remote access infrastructure design
- Guidance and specifications for access rights to data sources, bandwidth and network resources
- Specifications for secure thick/thin client computing
- Installation and managed operation of remote access systems and user authentication systems
- Client configurations for remote workers
- VPN provisioning
- Remote access security penetration testing
Security update services
- Catalogue of servers, desktops, laptops, PDAs, applications and operating systems
- Provision of VPN link into client LAN to monitor and control update systems
- Installation of applications and system group policies to monitor, audit and update systems
- Closed environment testing for interoperability bugs
- Automated upload and deployment of software updates and configuration changes 24/7 real time monitoring and updating of security and AV systems [sub heading2] Security policy services
- Analysis of security policy points against actual state of Internet and other non-Internet related connections
- Review of incident handling policies and procedures
- Analysis of security policy against containment measures and staff compliance
- Documented recommendations for policy and procedure enhancement
With operations in London and the South East of England, the SAS Group is ideally placed to deliver network security solutions to both UK and international customers.