KoçSistem
Search

Sahne  |  EMC Solution Center  |  Contact Us         Register  |  Sign In       Türkçe



Security Solutions



Nowadays, the information theft applications are increasingly challenging many corporations. Taking precautions by means of the end-to-end security solutions is an inevitable necessity while the security goes beyond a network-based concept. Herein, not only the products such as Firewall and IPS which enables only network-based security but Web Security, End-User Security, Network Access Control, and Data Loss Prevention (DLP) solutions should also be considered as indispensable parts of the whole security concept.

In the scope of Information Systems Security Solutions, KoçSistem offers;

  • Security Wall(Firewall) – VPN,
  • IPS – IDS,
  • End-User Security,
  • Data Loss Prevention(DLP),
  • Network Access Control (NAC),
  • Web Filtering & Proxy,
  • Encoding,
  • Messaging Security

technologies and services which are integrated in an end-to-end solution. Collaborating with the world’s leading Information Systems Security products manufacturers, KoçSistem offers quite a wide range of services such as consultancy, design, demo services, installation and integration, maintenance, support, version upgrades, and RMA services.

Security Wall (Firewall) - VPN

When http and https access methods are allowed, the companies should protect their systems by using IPS and Web Security Products compounds against the threats that may arise from this kind of access methods.

Corporations can protect their resources on the security wall and local area networks against the attacks coming from the other networks, and audit their network traffic between internal and external networks according to the predefined rules.

The Unified Threat Management (UTM) model’s services such as security wall, gateway antivirus, antispam, IPS/IDS, URL filtering on the same hardware, provide corporations which need to take precautions, a practical and fast solution as well as many cost and management advantages.

IPS (Intrusion Prevention Systems) - IDS (Intrusion Detection Systems)

Today there are a lot of websites which embody many weaknesses stem from either their operating systems or software bugs, and these weaknesses are used by intruders to disseminate the malware. In addition, many popular sites may be malfunctioned by concurrently started DDOS attacks on the captured computers which are now become a part of this malware network. As a result of DNS attacks, access to the web site is restricted or the user is redirected to another page.

Thanks to the IPS – IDS solutions, companies now can protect themselves against various attacks which may come from Internet or other networks by using a signature-based or behaviour-based security technologies.

Web Filtering – Proxy

It has become almost a requirement to control the web access of the office workers during the office hours. Meanwhile No. 5651 legislation which was approved in 2007 and targeted to struggle against crimes committed through Internet and web publishing, also forced many corporations to report their employees’ internet access. It’s possible to be infected by deadly malware when you even enter the most well-known/reliable sites.

The computers which surf in Internet together with KoçSistem Web Security/Content Filtering products, can access to the predetermined web pages in specific web categories for a specified time intervals in accordance with corporate policy.

End-User Security

The security technologies such as individual firewall, antivirus, antispam, preventing/encoding the usage of various media such as USB, encoding the hard disks, can maintain the end-user computers’ integrated security. Together with network security, End-User Security helps corporations minimize their security holes and have a more reliable infrastructure.

Data Loss Prevention (DLP)

The following three items seem to be the main resources of information leakages:

  • Well-intentioned employees within the corporation,
  • Targeted attacks which would come from outside the corporation,
  • Ill-intentioned employees within the corporation.

In many cases, the main reason of the information leakage is a combination of those factors. DLP (Data Loss Prevention) is a name given to the technology which is specifically designed for preventing the invaluable data related with the information security to be captured by others. Centrally managed DLP system protects predefined resources. Under the corporate policy requirements, all of the transactions related with the protected resources are reported, and the resources are always kept under surveillance.

DLP technologies prevent the invaluable data to be sent to the other systems over;

  • The applications (e-mail, Webmail, IM, P2P, Skype)
  • The network systems(Wi-Fi, Bluetooth, http(s), ftp)
  • Physical devices(Printers, USB Memories, Faxes, CD/DVDs).
  • DLP products can be run on server systems, clients, and mobile computers. Even though the all DLP structure is distributed over the whole network it can be managed and reported centrally.

Network Access Control (NAC)

Network Access Control (NAC) is a security technology which audits the compliance levels of the people who use the corporate communication network, with the corporate Security Policy principles. Only the secured desktop computers, laptop computers, servers, and PDAs which are compatible with the corporate network policies are allowed by NAC to access the corporate network.

Among the Benefits to The Corporations:

  • Maintains the compatibility of all end-user machines with the corporate security policies,
  • Makes sure the security of manageable and unmanageable devices,
  • Supports the security of both internal network and guest access,
  • Protects the security in accordance with the risk levels which are predefined by the corporate policies,
  • Protects against security threats and risks such as viruses or worms by restricting the access of computers which are incompatible with the corporate security policies, to the corporate network,
  • Decreases OPEX, and minimizes large scaled infrastructure failures due to offering a more reliable network infrastructure.

With NAC,

  • Only the people who can pass identity authentication can use the network
  • The accessible resources and bandwidths can be limited for various users or user groups,
  • It may be proved that the sectoral or IT Security standards are matched,

The following controls can be made on end-user computers:

  • Whether the Antivirus and Antispyware programs are installed and updated,
  • Whether the Security Wall and Policies exist and up-to-date,
  • Whether the hotfixes and updates in the user’s operating system are up-to-date,
  • Whether the gaming or filesharing programs are installed,
  • Checking out the installed programs,
  • Registry Control

Encoding

In today’s world the solutions focused on encryption of data, e-mails, media such as USBs for the security of mobile devices, hard disks of laptop computers, data networks, and Internet lines, are increasingly getting popular. KoçSistem offers a wide range of data encoding solutions that maintains your data security against the data theft or data loss risks.

Messaging Security

Given the fact that today more than 50% of the messaging traffic consists of spam messages, one of the main priorities of many firms is now to find a solution focused on e-mail security against the increasing spam traffic. KoçSistem offers Messaging Security services which protect corporate users from redundant mails and forward the business mails.


Categories
Network (3) , Security (3)

Share This Using Popular Bookmarking Services


facebook twitter linkdin
Call Center and Sales Information Phone | 444 0 262
© 2010 KoçSistem Information Communication Services Inc.

Contact Us | Privacy Policy | Site Map | Your Suggestions & Requirements | DOA Notification Form Koç Bilgi Grubu