COMBIS is fully aware of the security challenges that the IT systems of various sizes and complexity are confronted with. To help businesses to respond well to challenges and following current trends and technologies, COMBIS provides design, construction and maintenance of various security systems for specific customer needs.
All security solutions COMBIS easily integrates with existing infrastructure, achieving increased productivity and rapid return of investment.
- Protection from malicious code, workstations, servers and applications
Since today classic antivirus solutions no longer meet the minimum requirements for protection of workstations and servers, manufacturers have begun to create modular packages that are called Endpoint Security. Such package with antivirus module typically includes a firewall, a module for the detection of spyware, a module for detecting unauthorized access (HIPS), a module for monitoring applications, protection for physical and virtualized environments, etc.
- Protection against spam
Security solution in COMBIS portfolio includes not only quality protection from unwanted mail (spam) and malware (viruses, worms, Trojan horses, etc.), but also the implementation of advanced policies that control inbound and outbound e-mail. Other advanced features include the ability to encrypt outgoing messages and activation of so-called DLP (Data Loss Protection) modules with predefined policies for the control of sensitive content, such as credit card numbers and so forth.
- Protection and control of Web traffic
Security solution to in COMBIS portfolio addresses three potential problems at once: it is designed to protect users from malicious content while providing a detailed analysis of traffic for each user, with simple procedures to generate reports based on a number of key words. The functionality of the cache in standard web pages, as well as in some live streaming content, will prevent clogging of the Internet connection when viewing audiovisual content.
- Public key infrastructure (PKI)
In cryptography, PKI is an arrangement that binds public keys with respective users using CA (eng.Certificate Authority) organization. Connectivity is provided through the registration process and issuance of certificates, which, depending on the level of security, can be executed in CA programs or under human control.
Implemented PKI solutions provide the following functionalities:
- Digitally signing of documents
- Securing e-mails from unauthorized reading
- Providing a secure connection between multiple computers
- An additional method of user authentication using smart cards
- Reliable access to network resources, including remote access, VPN, wireless authentication
- Encryption of documents
PKI infrastructure is the foundation on which to build other applications, systems and other components of network security.
- Encryption of content
Due to the advancement of new technology and falling prices, data protection on laptops and storage devices is an increasingly important factor in the system protection. Sensitive data must be protected from loss or theft wherever you are. Because of this it is necessary to implement a system of encryption that will cover all forms of media used to transmit sensitive information - whether on laptops, USB disks, or electronic mail.
- Log Management
Log management solution is typically used for collecting, organizing and archiving server logs, applications and network equipment. In addition to logs, the same solution enables various reports, information about events in the IT environment. It is used by small and medium businesses that have a need for a centralized collection of logs for inspection or audit.
For larger companies a SIEM solution is recommended. SIEM solution offers advanced features such as the correlation logs (connecting event logs from various devices / servers) handling of incidents and advanced reports either for audit purposes or to comply with safety standards.
Combis offers both solutions, which can be further adapted to specific user needs.
- Multiple Authentication
Providing access to systems and resources from the outside has always been a challenge for any company regardless of its size or complexity of its infrastructure. Since the password is long recognized as insufficiently secure mean of authentication, it is necessary to secure the system in another way, usually through implementation of multiple authentications.
Combis solution offers a large selection of authentication devices that will satisfy every need. We offer all types of tokens, USB tokens with smart card functionality, smart card readers and devices for digital signature. It is possible to integrate all of these products with systems such as Citrix, Windows Desktop, Web applications, various types of VPN server, firewall and other network devices by using software packages.
The solutions supports integration with Radius systems, Active Directory, and many web applications (that support the SOAP protocol), and can provide strong authentication for Cisco network devices, MS TMG Server, MS Exchange OWA, MS Windows Desktop, a variety of SSO solutions and Citrix . The solutions are usually offered in conjunction with solutions for automatic access to resources (SSO), Identity Solutions (Tivoli) and PKI (Public Key Infrastructure) systems.
- Single Sign-on (SSO)
Companies with more employees and a large number of applications that they must simultaneously be used sooner or later find themselves spending more and more time with the administration of passwords. However, there is no cure for it. In its portfolio COMBIS has a Single Sign-solution that quickly and effectively solves the problem of centralized and unified user access to all of the applications they need. This solution enables rapid profiling of all applications, without the requirement for scripting. In addition to SSO components, this solution has the authentication component which means that apart from the initial application to the system except for passwords supports various ways of proving the identity of the tokens, smart cards, biometrics, etc.
COMBIS solution for Single Sign-On increases safety and introduces strong authentication methods while allowing users to use strong passwords in their work with applications without the having to remember them.
- Access Control
Companies that use contractors to maintain their security system, often have problems with access control, with identifying who is doing what and how much time they are spending on it. Financial institutions (banks, insurance companies) especially want to control who has accessed the critical services.
COMBIS offers a solution that has the ability to record and later review the activities on workstations and servers. Monitoring is possible through user use of the infrastructure directly or through a console that connects via Terminal Services, Remote Desktop, Citrix, VDI, VMware View, or other tools for remote access.
The data collected include pictures of events, meta data such as names of applications that are running during operation, file names and other things.
- Identity Management
Companies with many employees and a large number of diverse applications tend to have problems with managing accounts for a large number of users and applications.
Quality Identity Management solution improves security and introduces clear and straightforward procedures when handling your accounts, which enables you to centrally manage all user accounts of different applications in one place. Benefits include automation, i.e. the automatic launching of new procedures for the creation, cancellation or changes to existing accounts, and also the possibility of an accurate definition of user profiles and privileges that a particular user's system with simplified approval process and the possibility of delegation of administration.
Identity solutions often connect to the so-called SSO (Single Sign-On) systems and thus it is possible to give the customer a complete solution for authentication, authorization and single sign-on.
- Analysis of the level of system security - Overview of vulnerability and penetration testing
Vulnerability scanning should include review of all segments of the IT systems (servers, workstations, network equipment, network printers, operating systems, web applications) in order to find weaknesses in any part of the system.
Since finding vulnerabilities in a timely manner means that they can be analyzed and removed, regular checkups of this type reduce the chances of a successful attack and compromise of information from the outside or inside.
Also, given that regular checks of vulnerability necessary to comply with most security standards (PCI-DSS, ISO 27001), it is important to generate a report containing all the elements required by the audit.
Penetration testing has also become an integral part of every good security policy, and also ranks among the mandatory requirements for PCI DSS.
COMBIS uses OSSTMM and OWASP methodology for penetration testing, which are recognized by international companies and security experts. Tools used for manual penetration test are recognized and trusted "open source" tools, unless the user requests the use a specific tool, in which case it must own or buy these tools.
- Maintaining security solutions
Thanks to a sufficient number of trained and certified professionals, COMBIS can offer 24x7x365 maintenance regime and all the necessary forms.
- Assistance in coordination with the safety standards
Thanks to our experience and previous projects, COMBIS is able to offer its customers assistance in coordination with various standards such as PCI-DSS or ISO27001. This support includes system analysis, proposal of hardware and software solutions that can help the harmonization process, consultation and full documentation.