|
Business challenges:
With new threats and vulnerabilities being exploited at such a rapid pace, companies have no longer a choice but to work on a war footing to help detect those threats and vulnerabilities before the hacker does and stay on top, on this one-upmanship game. Access is necessary to the latest threat information and the updates necessary to detect and counter vulnerabilities and it has to be done in-time.
A commercial off-the-shelf product, in general has drawbacks. They,
- Are completely opaque in terms of what they check and how they check.
- Do not meet the specific task requirements or too hard to customize.
- Are not cost-effective, huge TCO and upfront investment.
The Solution
SecPod in association with Greenbone Networks GmbH brings you Network Vulnerability Tests (NVT) feed for OpenVAS, an Open Source vulnerability scanner.
Deliverables
- Professional quality OpenVAS NVT feed
- Support
Features
- Multi-tier quality assurance process
- Multiple daily updates
- Test routines are cryptographically signed by Greenbone
- Integrates OVAL, NMAP, Nikto, SLAD
- Remote vulnerability tests and local vulnerability tests
- Tests are delivered with pre-defined scoring, customer-specific adjustable
- Coverage: Microsoft Windows, GNU/Linux (Debian, Fedora, Mandriva, Redhat, SUSE, Ubuntu), Solaris, HP-UX, Cisco and various active networks components
- Transparency: All test routines as well as scan engine provided with source code
Benefits
- Provide out-of-the-box compliance
- Cost control - vulnerability management flat rate: unlimited ports, devices, IPs
(One subscription per scan engine)
- Cost savings by pro-active vulnerability detection
- 100% white-box solution: no need to trust proprietary solutions
(Feed and scan engine are delivered with full source code included)
- Globally networked development team: North-America, Europe and Asia
- Flexible integration into different vulnerability management strategies
Write to us at info@secpod.com |
Security Product Engineering |
|
|
Product Development
Software is becoming increasingly complex with more features added constantly to meet the demands of the market and differentiate from competition.
With the mounting pressures of cost, time to market and increased features, it is important to keep the engineering costs low without compromising on the quality. Finding skilled partners who have deep experience in security domain and strong product development practice is critical to the Product Company’s success.
SecPod has a comprehensive set of skills in multiple facets of the security domain. This enables us to work as a one-stop shop for our customers in the security domain and address all of their product development needs. We complement our customers' product development initiatives and help them to differentiate their products and stay ahead of the competition in the market.
Key focus areas include,
- Vulnerability Assessment and Management
- Intrusion Detection/Prevention System
- Network Management: device status, change management, configuration management
- Policy compliance and access control
- Authentication and Identity Management
Testing Services
With growing costs, flattened budgets, fierce competition, there is a strong demand for high quality, innovative products and services with quick go-to-market strategies and minimal investment. While a well defined requirement definition and a highly process oriented product development go a long way in ensuring that, product testing does not fall too behind in ensuring that goal. We at SecPod understand that and hence we believe that specialized testing services can ensure more efficient utilization of limited resources and enhance business value, allowing you to focus on core business processes. We also believe that a strong domain experience goes a long way in reducing test cycles, thus improving time to market with reduced cost.
With our deep expertise in the security domain, and our in-depth experience in test methodologies, automation frameworks, tools and defined processes, we offer testing services that help you meet your goals and more with high quality.
Write to us at info@secpod.com |
Open Source Security Solution |
|
|
Business Challenges:
COTS (Commercial off the Shelf) products do not address the needs of the organization, for example, building an internal CERT for your organization or deploying a Web Application Firewall using Snort with custom snort rule feed. Organization’s requirements call for customization. Finding skilled partners who have deep experience in security domain and strong product development practice is critical to the Company’s success in deploying security solution.
Additionally, with the mounting pressures of cost, it is important to keep the engineering costs low without compromising on the quality.
The Solution
SecPod has a comprehensive set of skills in multiple facets of the security domain. This enables us to work as a one-stop shop for our customers in the security domain and address all of their solution development, testing and deployment needs. Offering mainly open source based solutions; SecPod helps to keep the cost low while ensuring that our customers get the right solution.
Our key focus areas include,
- Vulnerability Assessment –OpenVAS
- Customization
- Deployment
- Technical support
- Training
- Intrusion Detection/Prevention System –Snort
- Customization
- Deployment
- Technical support
- Training
Deliverables
We deliver end-to-end solution that meets your requirements and our involvement starts from project conception stage till solution deployment. Projects can be based on fixed scope or time and material. SecPod can also consult during your requirement definition phase to fine tune your needs using our deep experience in the Security domain.
Write to us at info@secpod.com |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
