Softwink- Network Security Experts

Intrusion Detection Monitoring

During the Intrusion Detection Monitoring installation process, we set up a machine that acts as an alarm system for your network. You might say "Why do I need this service, I have a firewall", well a firewall is like the lock on the front door. If it’s not monitored then just like your physical building without an alarm monitoring system comprised of motion detectors and an alarm company to notify the police, a burglar could take a crowbar to break that lock. Well, a Hacker can take a software crowbar to your firewall and if it's not monitored, you will not know. Unlike a physical break-in where you would notice the damage the next business day, with a network break-in you might never know.

Could your customers' information be targeted and that information used by criminals to target those customers? Softwink’s intrusion detection monitoring system watches the traffic coming into the firewall for the crowbar being deployed. It alerts our Network Operation Centers (NOC) personnel 24 hours a day 7 days a week of those types of events. We are the alarm company for your network. In the event of a high risk alert where we determine that the firewall could be compromised we will either block the source address of the offending traffic if we manage your firewall or notify the firewall management personal to do the same.

All the alerts that come into our NOCs are stored in a database at our site. The traffic between our site and yours is encrypted. There are other companies that perform this type of service but they don't encrypt the traffic. They send in clear text the alerts through such utilities as "syslog". We think this is counter productive to your network security. A "Hacker" can watch that traffic and know where the trip wires are. If you already have an intrusion detection monitoring company, make sure they encrypt your alerts or you're just wasting your money!

On a quarterly basis we will provide our customers with a report of all suspicious events which can be given to auditors for “Gramm-Leach-Bliley”, "HIPAA" or "Sarbane-Oxley"compliance.

Here's what our general setup looks like:



	Home \| Contact Us \| Customer Support \| Papers \| IDS Login
Home Contact Us Customer Support Papers IDS Login Intrusion Detection Monitoring Penetration Testing Spam Guard Firewalls & Network Security IP Lookup: Sensor ID: Username: Password:	Intrusion Detection Monitoring During the Intrusion Detection Monitoring installation process, we set up a machine that acts as an alarm system for your network. You might say "Why do I need this service, I have a firewall", well a firewall is like the lock on the front door. If it’s not monitored then just like your physical building without an alarm monitoring system comprised of motion detectors and an alarm company to notify the police, a burglar could take a crowbar to break that lock. Well, a Hacker can take a software crowbar to your firewall and if it's not monitored, you will not know. Unlike a physical break-in where you would notice the damage the next business day, with a network break-in you might never know. Could your customers' information be targeted and that information used by criminals to target those customers? Softwink’s intrusion detection monitoring system watches the traffic coming into the firewall for the crowbar being deployed. It alerts our Network Operation Centers (NOC) personnel 24 hours a day 7 days a week of those types of events. *We are the alarm company for your network*. In the event of a high risk alert where we determine that the firewall could be compromised we will either block the source address of the offending traffic if we manage your firewall or notify the firewall management personal to do the same. All the alerts that come into our NOCs are stored in a database at our site. The traffic between our site and yours is encrypted. There are other companies that perform this type of service but they don't encrypt the traffic. They send in clear text the alerts through such utilities as "syslog". We think this is counter productive to your network security. A "Hacker" can watch that traffic and know where the trip wires are. If you already have an intrusion detection monitoring company, make sure they encrypt your alerts or you're just wasting your money! On a quarterly basis we will provide our customers with a report of all suspicious events which can be given to auditors for “Gramm-Leach-Bliley”, "HIPAA" or "Sarbane-Oxley"compliance. Here's what our general setup looks like: