Intrusion Protection System (IPS) / Firewall
Relay-based spam filtering are deployed for all Customers. Operating at multiple data centers, they relay all email to our email servers and scrub from it objectionable attachments, viruses, spam and files that might contain any executable code.
Application Firewalls are deployed for critical web systems that house high value databases and critical data, such as payment card data. These firewalls prevent attacks intended to exploit application level vulnerabilities and also attacks on databases and other data residing on these systems.
We ensure that all apps running on the WAN (Wide Area Network) have been hardened to minimize hack possibilities. We prevent apps from running with root privileges. We modify configurations to minimize risks of attack. We eliminate unnecessary utilities, remove all printers, file shares, protocols and other such unneeded items. We ensure that all passwords meet minimum entropy requirements.
SIEM (Security Information and Event Management) tools are available for Customers with demanding compliance requirements. SIEM tools conduct real time analysis of log data and generate alerts when anomalies are detected.
The availability of Customer services is ensured by continuous monitoring of traffic on our edge routers and by use of our DDoS (Distributed Denial of Service) mitigation System.