Managed Security Services | Security Infrastructure Managed Solutions India

Sify InfraSecure provides continuous protection against new vulnerabilities, minimizing costs, peace of mind due to round-the-clock monitoring by an experienced Sify Team. No nagging fear of crippling attacks, High productivity as enterprises focus in their area core area of activity.

Ensure that a team with expertise. monitor and manage your Security Infrastructure. thereby maximizing performance .
Continuous protection against new vulnerabilities through the use of state-of-the -art solutions.
Minimized costs, removing the need for expensive in-house support
Sify 24x7 Incident Prevention & Response Center - around the clock confidence
Allows you to refocus your resources on core business objective
Services would be in line with Services Level Agreement.

The robustness and resilience of infrastructure is as good as the weakest link within your organization. The weak link maybe a few untrained associates, extant policies that are not in line with your organization objectives or software’s that have not been updated for the latest vulnerabilities unearthed in some part of the globe and more. All these situations have the potential to compromise the organizations’ security infrastructure, more importantly your mission critical information.
Companies with a structured, automated, patching process in place have more secure systems, reduce annual costs to clean up disastrous virus attacks and increase employee productivity through greater system availability. They also save thousands of labor hours annually, and lower security-related legal risks and gain greater confidence of their partners, suppliers, and customers.

90% of security compromises are because of vulnerabilities left un-patched. (Source: Cert Coordination Center)
KPMG India Survey Figs showed that India ranks among top 5 nations in the world in terms of security breaches
A 24-year-old hacker from Ahmedabad was arrested by the Mumbai Cyber Cell recently, for hacking into the website of a renowned Indian Bank.
An Ernst & Young Info Sec 2002 Survey
- Causes of non-availability of critical systems
- Malicious acts by outsiders 26%
- 3rd party failure 14%
- Malicious acts by employees 6%
- Inadvertent acts by bus partners 5%
- Cyber terrorism 2%
- One month’s IDS log of a large, private Indian Bank
- 3200 intrusion attempts
- 70% from 3 IP addresses
- Could not trace beyond service provider

This is a compelling fusion of proactive planning and 24x7 handling of security incidents. Sify InfraSecure service enables you to prevent majority of the attacks and in the event of an attack, quickly respond to computer – related security incidents.

As an Sify InfraSecure customer we would perform the following for you,
- We would design a baseline security level that is in consonance with your company’s business environs.
- Perform periodic Vulnerability assessment & Penetration testing on your infrastructure to assess and the baseline level.
- Apply patches to your IT infrastructure such as operating systems, applications, and desktops.
- When required promptly respond to computer – related security incidents.

During this phase Sify will identify the systems that will be covered by the project. The following information will be collected during this phase:
- IP address and DNS name
- OS Name, version number, patch level(s)
- Application name(s), version number(s), and patch level(s)
Technical vulnerability assessment of the client infrastructure to identify the existing security levels.
Process vulnerability assessment of the client infrastructure to identify the security process maturity.
Recommend a base line security level.

Scheduled periodic Vulnerability Testing & Penetration Testing will be performed on the clients set up.
The client’s infrastructure is updated with the latest patches.
Patches will be tested by Sify in our Security Operations Center (SOC) to determine if there are any general problems.
Prior to applying the patches to the clients production systems we would receive a written authority before we apply the patches.
The provision of testing the patches in the clients environment is present as an additional service.

If and when a computer related incident is reported we would respond within the time frame stated in the SLA.
We shall analyze the information available to get a preliminary understanding of the incident.
Apply quick-time solutions to contain the incident.
Return will detailed understanding and bring the systems back to normal operations.
The response process is categorized under Tier 1 ( which is call), Tier 2 ( which is mail) and Tier 3 :
Interact with the affected departments / business units and educate them with relevant information on the incident.
Identify and recommend long term solution to prevent future incidents
Document and circulate the incident information for awareness and/or future reference.

An optimum mix of CISSP, CISA, BS7799 professionals for the consulting services such as performing Technical & process vulnerability assessment and penetration testing, designing and defining the base line security level as per the criticality of resources and more.
Certified professionals in SUN, Red Hat Linux, Windows, Oracle, SQL, Lotus Notes & MS Exchange

Work Stations: Win 2k, XP, 98, NT, Me, Acrobat, WinZip, Explorer & MS Office & MSProjects

The dedicated corporate Security Services provides a comprehensive suite of Enterprise Assurance, Implementation & Procurement and Managed Security Services. Our Services can help your organization design develop, improve, or manage your security infrastructure. Our team augments your internal security initiative with on-demand subject matter experts to help align your security and organizational strategies with your policies, architectures, and technologies.

When aspects of enterprise security are outsourced to a vendor - which is happening more often now - we get Managed Security Service. According to IDC, the US market for managed security services is showing compounded annual growth rate of more than 25% and will reach $2.2 billion by 2005. Gartner believes that the majority of enterprises that outsource the monitoring and management of perimeter security will increase their security level at equal or reduced cost to internal efforts.

Ensure that experts monitor and managed your Security Infrastructure, thereby maximizing performance and security.
Continuous protection against new vulnerabilities.
Minimized costs, removing the need for expensive in-house support
Sify 24x7 Network Operation Center - around the clock confidence
Allows you to refocus your resources on core business objective
Ultimately providing security confidence and peace of mind

Description : Sify Managed Firewall Service is a secure and comprehensive option that allows corporations to outsource the daily management of their corporate firewalls helping them in protecting their corporate network or intranet against unauthorized access. It combines the best of breed technologies to bring to you the most effective and efficient way of protecting your network. Sify will remotely and securely manage your Check Point and Cisco PIX, Nokia & Netscreen firewalls to shed the burdens of struggling with the pace of technology changes, new security threats, dynamic network structures and rapid network growth. There exist applicable SLA's to ensure that deliverables are tangible.

Description : Sify Managed Intrusion Protection provides true 24x7 network monitoring, intrusion detection, and incident response services, allowing you to focus your internal resources on the core business functions. Included in the service are detailed, automatic escalation processes and access to a secure MSS Customer Portal for real time viewing of event logs, summary reports and statistics.

Description : Sify Managed Intrusion Monitoring Service provides the critical monitoring, analysis/correlation and response services needed for intrusion protection, while allowing the customer to maintain responsibility for the uptime, maintenance and performance of the actual intrusion detection platform (hardware & software). It is ideal for you if you need expert 24x7 intrusion protection services but require flexibility in the service delivery due to a previous investment in an IDS platform, a need for specific hardware, or company policies restricting third party management of internal equipment.

Description : Sify Managed Gateway Service provides 24x7 monitoring for anti virus protection and active content management. Thereby providing you with virus scanning, email scanning, providing auto anti virus updates, Anti-Vandal, Blocking of ActiveX and Java scripts, Regular updates, URL Filtering. It is ideal for you if you need expert 24x7 gateway protection services but require flexibility in the service delivery due to a previous investment in a Anti Virus Gateway platform, a need for specific hardware.