Clients  Partners  Newsroom  Contact Us  Offers

Network Security Services

At Boston HelpDesk, we feel it is important to plan for and implement a level of security that is appropriate for an organizations business needs. We have made network security an important practice area within our organization and have dedicated the necessary resources to keep current on matters of network security. This allows us to help clients align their security needs with their business practices by assisting them with planning for their network security and implement their security plan.

Overview

Securing your IT infrastructure from external and internal threats is essential to your business survival. The Boston HelpDesk recommends a multifaceted approach to protecting our client’s network from combined security threats. This approach assesses all vulnerabilities on a network and leads to the development of a comprehensive threat management solution. This includes a multi-layered solution that offers protection from the many threats that lie in wait for unprotected networks such as - harmful incoming traffic through email and internet, disturbance from outside intruders, end user induction of dangerous content, introduction of threats from home users or traveling users. Our approach is to proactively protect against threats including viruses, malicious code, and attacks on data and networks by applying solid technology and management policies. Our goal is to protect the entire IT fabric - servers, desktops, mobile devices, web, and wired and wireless networks.
Our approach begins by assessing your current security position and examining your security needs. We then identify and integrate technologies that are suitable for your environment and assist you with implementing policy and maintaining best practices for a secure IT environment.

Common Threats

E-mail

Malicious code (Worms, Viruses, Scripts)
SPAM
Email Server relays

Perimeter

Hacking - unauthorized users gain entry and cause loss of data.
Malicious code – Enters through the internet gateway (http, ftp, SMTP, POP3)
Denial of Service Attacks – Outsiders flood network with request, bringing network connection to a slowdown or halt.

LAN

Servers – Insecure Network Shares, Improper Security Policies, non-hardened OS
Desktops – Insecure Network Shares, unauthorized software installations, A/M/S
Laptops and Portable devices – Malicious code brought in from traveling users
Wireless Networks – Unsecured, Not Encrypted
Rouge Users – Unauthorized access to critical data

Remote Access

Insecure Dial-up, VPN and Terminal Services Configuration
Unprotected Web Services
Remote Users without virus protection
Weak Password Protection

Common Solutions

Firewalls - Block access to internal services that don't require public Internet access. This will help block some of the various propagation paths used by blended threats. Internal networks should be designed to authenticate internal users, while firewalls will manage access for remote users.

Antivirus Systems - provides protection against virtually all forms of virus and malware attacks. This includes virus protection for desktops and servers, PDAs and groupware (Lotus Notes/Domino and Microsoft Exchange mail servers).

Intrusion-prevention systems – Provide automated attack recognition. Intrusion Detection and Prevention detects and blocks intrusions as they pass through the gateway. Once it detects an intrusion, it issues temporary firewall rules that block the suspected attack. Alternatively, it can send just an e-mail alarm about the attack or do both. The software also produces reports on the traffic that triggers an intrusion response.
Content Inspection - Protects your network by safeguarding systems connected to the Internet from malicious code attacks and unwanted “SPAM” email. Content Inspection guards the gateway between the Local Area Network and the internet making sure that the network is protected at the entry point and not at the Groupware, server, or desktop level. It acts as antivirus protection at the gateway, safeguarding the enterprise from viruses and malicious code before they can enter the network. Content Inspection includes real-time attack intervention; automatic detection, blocking and notification of all types of malicious content such as Java, ActiveX and viruses. Automatic attack signature updates, combined with predefined policies for a wide range of situations are in place to keep ahead of would-be attacks.

Network Administration - Software is kept current by regularly installing vendor updates and security patches. All of the blended threats that have resulted in mass infection did so by exploiting known vulnerabilities in application software, some of them more than a year old. This means they all could have been prevented if users regularly installed software updates. Be sure to subscribe to security mailings from all your software vendors, and have a plan for implementing those updates as quickly as possible.

Operating System Lockdown – Security best practices for Windows OS, Exchange, IIS, and other application server configurations to prevent internet attacks.

Auditing and Reporting – Process to record and review activity of authorized users and resources accessed and of possible intruders.

Management Policies – Development of strong password policies, remote access, antivirus, email usage & computer usage policies to help protect IT infrastructure.

View our Network Security Overview