Firewall | VPN | SD-WAN
We manage threats and vulnerabilities to network resources and critical decentralized IT ecosystems in a VPN environment.
We provide service connectivity using SD-WAN, in-depth network analysis, off-line backups out of reach of attackers and Anti DDoS protection.
Service detail
- User access control
- Implementation of multi-factor authentication
- Vulnerability management of IT/OT and IoT devices
- Cloud access management
- Consulting service for licensing and implementation of software protection systems
- Risk Management Module
- SD-WAN: automatic monitoring of network traffic, route selection with the highest possible quality guarantee combined with high security requirements
- Open source technology with non-vendor locking principle for integration of different technologies and optimization of network connection costs
- In-house development of a “secure by design” architecture for central management and monitoring of mission-critical applications
- Guaranteed direct access for complete technical and security oversight of 7/24/365 traffic without the involvement of applications, software and 3rd party support
- Next Generation Firewaliing
HA cluster
We protect the critical systems of organizations (financial systems, production management, etc.) and provide continuous access through High Availability technologies to ensure high availability of servers, data and applications.
We optimize and implement measures in case of failures, outages and serious damage to the key operations of small and medium-sized companies.
Service detail
- Operation of our own data centre with high availability also at the data storage layer
- Ensuring the operation of critical information systems in a system of online replicable storage
- Configuring HA clusters with failover support for high availability
- Continuous monitoring of potential points of failure and data corruption: storage, power supplies, network components and other HW and SW resources
- Analysis of the environment for running critical enterprise applications, including development of DRPs/ Plans for large-scale data corruption and recovery
- Utilization of proprietary automated data backup and offline backup systems
Offline Backup
We offer a service for storing backups out of the reach of attackers, which is operated in a separate and secure infrastructure in the event of an attack on the primary source of IT infrastructure.
We use automated systems to back up servers, workstations and data storage of various types using proven backup technologies.
Service detail
- Backup Analysis of objects for the backup segmentation system according to the sensitivity of corporate data and the methodology of the National Security Office of the Czech Republic
- Automatic sorting of critical data into a multi-level media structure with respect to the required recovery speed within the Recovery Time Objective and Recovery Point Objective /DRP strategies
- Active protection against ransomware
- Design and implementation of encryption infrastructure for object and data backup
- Secure backup of data to object storage in the cloud within our data center meeting minimum Tier III requirements across multiple geographically separated locations
- Remote risk monitoring of backup devices
Anti DDoS
We design the strategy and implementation of the highest level of network security solutions against complex and sophisticated DDoS attacks.
We monitor traffic and provide threat prevention with an automated real-time remediation service.
We detect DDoS attacks early, ensure high connectivity availability at all times and block ongoing attacks.
Service detail
- Unique HW assemblies for cleaning DDoS attacks within the Faster CZ backbone network
- External scrubbing center for high traffic volume attacks
- Providing access to network traffic, attack details and enhanced technical support 24/7/365
- Protection against attacks using known tools and specific attack techniques (ICMP/IGMP/UDP FLOOD, TCP ACK/RST/SYN incl. FIN and ACK FLOOD, TCP fragmentation, etc.)
- Monitoring of defined network objects with setting of rules for mitigation of different types of attacks
- Availability of the protected service is ensured even during an attack
Advanced WAF | Web Application Firewall
The service provides enterprise-grade web application security protection that is constantly adapting. Based on leading web application firewall certification, it provides full coverage of OWASP Top-10 threats and automatically adapts protection as threats evolve and assets are protected.
Service detail
- Protecting web applications from various types of attacks such as SQL injection, cross-site scripting (XSS) or cross-site request forgery (CSRF)
- Filtering the content of HTTP requests and responses, eliminating dangerous elements using defined WAF rules
- Monitoring traffic and identifying unusual or suspicious behavior patterns that indicate a possible attack
- Preventing unauthorized access to applications and data by detecting and blocking suspicious activity
- Supporting the identification and containment of bots that may be involved in malicious activities such as botnet attacks
- Helping organizations comply with security standards and regulations by protecting web applications against potential security threats
