Protecting What Is Most Important to You
Organizations today are confronted with different forms of malware, both internal and external, which have great potential to cause disruption and damage to information and communication infrastructures, and business applications. Organizations who want to avoid negative business impact and reduce risk exposure need to address challenges on various levels - while managing cost, complexity, and risk. These security challenges are related to infrastructure, information, risk, and compliance.
Infrastructure Security:
Information Security:
Manage Risk and Compliance:
Risk can present itself in operational challenges, vulnerabilities, and continuously evolving cyber threats. In order to reduce your risk exposure, you need a methodology and a security platform which allows you to anticipate problems, take corrective action, and show practical results. Addressing security risk management as a business process, rather than just blocking threats and fixing vulnerabilities, creates greater value in terms of technology efficiency, resource allocation, and security compliance.
Verizon provides a full portfolio of Managed Security Services and can work with you to refine security policies and processes to proactively identify vulnerabilities and prioritize threats across your enterprise resulting in better visibility, enhanced security, and reduced risk.
Expertise When You Need It Most
Monitoring
Verizon monitors the availability and health of security devices on a 24/7 basis. Security devices are located on your premises and connected securely to our Security Operations Centers (SOC) located around the world, providing a "Follow-the-Sun" service model. Logs and alerts generated by the security devices are correlated, classified and analyzed by our proprietary SEAM (State & Event Analysis Machine) engine and are interpreted by security analysts in the SOCs. We investigate incidents and take timely action to respond to threats. Risk Based Correlation provides a Risk Calculation based on Likelihood and Impact of the threat on your assets.
Management
Verizon provides proactive management of the security devices and remotely maintains the operating system and software. This includes the installation of security patches, hot fixes, service packs, product updates, management of rule-sets and security policies, restoration of devices, and the management of configuration backups.
Contact your account team to discuss your global needs.
Contact your account team to discuss your needs and get a custom quote.
Interaction Through Our Security Dashboard
You can access our Security Dashboard for an up-to-date view of your data – including events processed, and your company's security posture and the effectiveness of the security devices at various levels. In addition, granular search and query capabilities on events and incidents are available, as well as comprehensive reporting. You can connect to the Security Dashboard through strong authentication.
The Security Dashboard is organized hierarchically, and you can view your security devices grouped by region, business unit, etc. You can grant individual employees specific permissions to view data related to certain devices or groups of devices, and you can define user profiles geographically or by business unit. Critical events are graphically represented by a color code and identify locations where critical events have occurred. You can then obtain a more detailed overview of these alerts, which are grouped by level and status. Alerts provide technical information as well as process information.
Managed Security Services – Premises offers:
Firewall
Firewall provides monitoring activities, including the processing of firewall logs in near real time to identify potential security threats. It measures availability and health of your firewall and escalates security and health incidents to initiate remediation. Management activities include troubleshooting and maintenance of the software configuration and rule set.
Application Level Firewall
Application Level Firewall helps protect web applications from attacks that aim to exploit vulnerabilities in business-critical applications. Threats against the web infrastructure are monitored and escalated in near real time for immediate action. The service provides software updates to implement current policies and improve threat protection.
Proxy Server
Proxy Server processes web requests per a defined security policy. The device is located between your internal network and the Internet gateway, and the service forwards requests to the internet or denies them. The proxy server provides policy enforcement, user tracking, and caching capabilities. The following modules can be added as plug-ins: anti-virus, anti-spam, and content scanning.
VPN
VPN manages SSL or IP Sec devices used to establish, manage, monitor, and terminate VPN tunnels according to your defined policy.
Network Intrusion Detection (NIDS) / Prevention (NIPS) System
NIDS/NIPS monitors the alerts generated from the NIDS/NIPS sensors located on the LAN segment the corporate firewall. Suspicious or malicious traffic can generate alerts and be allowed to pass through or be dropped according to the security policy. The monitoring service analyzes the NIDS/NIPS security alerts and performs filtering classification, and correlation to prioritize and escalate security incidents.
Host Intrusion Detection (HIDS)/Prevention (HIPS) Systems
HIDS/HIPS can be installed on servers and clients to operate at the host level to identify and deny potentially malicious activity. Policies can be unique or grouped together, and your specific thresholds are defined. Two types of escalation services are available: full escalation and threshold escalation.
Unified Threat Management (UTM) or Security Appliance
UTM monitors and manages multiple security functions such as Firewall, VPN, IPS, Content Filtering, anti-virus and anti-spam through one device. The service operates in the same manner as the individual security devices.
Email Security Gateway
Email Security Gateway includes anti-virus filter and email encryption functionality. An anti-spam plug-in is available as an option.
Content Scanning
Content Scanning is deployed at the Internet Gateway of the network via an appliance or software. It includes scanning and processing of web, email, and IM traffic to detect inappropriate content and information leakage defined by the security policy.
Log Monitoring and Management
Log Monitoring and Management provides automated and centralized collection, current and historical analysis, comprehensive reporting, secure archiving, and retrieval of logs sourced from operating systems, web servers, and database servers.
Network Access Control (NAC)
We monitor and manage the NAC device and identify whether networked devices such as laptops, desktops, and other corporate assets are compliant with an organization's security policy. We do not monitor or manage your end-devices.
Database Protection
Database Protection provides automated, scalable database security, activity monitoring, auditing, and reporting solutions for databases and business applications. Database Protection Services can be complemented by a full range of Professional Services.
Load Balancers
Encryption and decryption of SSL sessions for secure web applications can be terminated on the load balancer instead of the web server. Load balancers provide an additional layer of security since Internet clients will not directly connect to the end applications, and may have security-specific functionalities like web application and regular firewalling.
Endpoint Security
Endpoint Security solutions provide several combined protection mechanisms directly to the desktop/ laptop using centrally managed "endpoint" agents. The protection mechanisms can provide services such as anti-virus, anti-spam, personal firewall, encryption, or mechanisms which control whether or not peripheral devices can be connected to the endpoint. An "Endpoint Policy Manager" collects security logs from the various endpoint agents and manages these centrally.
Security Event Management (SEM)/ Security Information and Event Management (SIEM)
SEM/SIEM technologies are used for near real time awareness of external and internal threats, and provide analysis and reporting of security data. SEM/SIEM focuses on fast response, identifying a potential security event and generating a notification within a short time frame. The service provides a combination of in-house event management and outsourced monitoring and focuses on coping with large volumes of alerts and the identification of real threats.
File Integrity and Policy Compliance Monitoring
File Integrity and Policy Compliance Monitoring tools provide configuration control which combine file integrity monitoring with comprehensive compliance policy management to protect, detect, and correct IT systems throughout the enterprise. File Integrity Monitoring detects and alerts of any changes to IT files and configurations in near real time across heterogeneous physical and virtual IT infrastructures. Policy Compliance protects IT infrastructures by assessing the configurations against industry standards, best practices, and internal policies for information security. It provides visibility into non-compliant systems and allows for remediation steps to be taken to bring the systems back into compliance.
Getting Started with Wholesale Access
Carrier Services Gateway (Web)
Industry Standard Ordering Guide (ATIS)
CFA Validation/Service Address
ISP Provisioning Contacts-East
ISP Provisioning Contacts-West
ISP Trouble Reporting Contacts-East
ISP Trouble Reporting Contacts-West
Search