Cybersecurity

Protecting the network environment and internet connection points involves ensuring the security of network infrastructure and points where an organization’s network connects to the internet. We offer NDR (Network Detection and Response) class systems, IPS/UTM/FW systems, network traffic anomaly detection, and traffic decryption solutions.

Endpoint protection is based on a multi-layered approach to secure devices against a wide range of cyber threats. We offer solutions developed over decades by Symantec (now known as Broadcom) that protect against malware, ransomware, zero-day attacks, and other types of malware.

We also offer a range of ManageEngine tools that focus on end-to-end management of end stations, integrating protection functions with patch management, device monitoring, and system compliance.

Securing data involves implementing a variety of strategies, tools, and practices to prevent unauthorized access, manipulation or corruption of data and applications. We offer Broadcom’s DLP systems, a comprehensive information leakage protection solution operating as agents on end stations and as a network module that protects sensitive information regardless of its format or distribution channel.

We carry out projects that include implementation of SIEM/SOAR systems and their integration with other customer solutions, design, build and support within the Security Operating Center (SOC).

We are a long-standing partner of Splunk, whose solutions play a key role in the operation of SOC departments, supporting them in monitoring, detecting, analyzing, and responding to security incidents. Splunk provides tools that enable the collection, analysis and correlation of massive amounts of data in real time, which is essential to effectively protect organizations from cyber threats. Splunk integrates with threat intelligence (TI) platforms, such as Recorded Future and Google/Mandiant, which provide information about new threats and attack patterns. This information can be used to automatically correlate with data collected by Splunk, speeding up the identification of known threats.

OT security is an essential element in ensuring business continuity of key industrial infrastructures and processes. It is often a separate domain from IT security , as OT systems have their own requirements and characteristics. We offer solutions for monitoring, analyzing, and managing data generated by industrial equipment, control systems, or other technologies related to industrial operations. Our key partner in this field is Tenable, whose OT Security platform is specifically designed to protect industrial networks.

We offer solutions that provide secure access to data and applications in the cloud environment. Our main partners in this area are Tenable and Splunk. Tenable offers comprehensive solutions for vulnerability management, risk and compliance assessment, as well as protection of containers and infrastructure as code (IaC). Its main focus is continuous monitoring of cloud resources and real-time vulnerability management. Splunk collects, indexes, and analyzes data from various cloud sources (AWS, Azure, GCP), providing a 360° view of cloud infrastructure and automating cloud incident response with SIEM and SOAR tools. By integrating with cloud platforms and leveraging log analytics, Splunk enables rapid threat detection, response and incident management in multi-cloud environments.

Cyber security testing and audits help organizations identify, assess, and improve their IT systems’ security level. In cooperation with Fortra, we offer tools for automating penetration testing (Core Impact Pro) or simulating cyber-attacks (Cobalt Strike, Outflank) that are key for the Red Team and Blue Team in testing actual attack resilience.

Using such tools helps organizations improve employee awareness and optimize audit and risk management processes.