MSSP

SOC

Softcell’s SecureShield (powered by Wazuh™ ) is a Managed Security Services (MSSP) platform based on big data analytics.

It provides threat prevention, detection, and responsefor on-premise and cloud-based environments with workloads running on physical, virtualized and containerized systems.

Backed by multiple threat intel sources & 24x7 monitoring by Softcell’s security experts, SecureShield frees you from the hassles and challenges of day to day security monitoring and management and provides you with single window to view your security posture.

Secureshield at a Glance

Secureshield has ten modules covering the full gamut of security related requirements from an SIEM.

Managed Firewall

Firewalls are critical devices that need to be functioning optimally 24x7 so that business can run seamlessly. However managing, monitoring and ensuring uptime is complex, involving several factors such as updating versions, keeping configurations up-to-date, patching, responding to alerts, compiling reports, optimisation and more…

All these require skilled staff that are not easy to hire, train and retain. Take advantage of Softcell’s Managed Firewall Service and save cost and time compared to dedicating resources to manage firewalls. You can free up your security resources to work on strategic initiatives aligned to the business. Avail of accelerated detection via real-time, high-fidelity monitoring, analysis, and 24x7 investigation, all backed by round-the-clock response with a trained team of experts to handle all firewall related issues.

Managed EDR

As the volume, variety, and sophistication of cybersecurity threats increase exponentially; organizations find it difficult to maintain the security posture on their endpoints. Tools like NGAV & EDR are very helpful, but the huge volume of data they throw up presents another challenge. Expert resources are required to analyse and make sense of the logs and identify threats.

Go in for Softcell’s Managed EDR services to improve your company’s level of threat monitoring, detection, and analysis without needing a 24x7 internal security team up-to-date with the latest threat data. Softcell’s security experts help you to gain insights into the threat landscape, reduce dwell time and meet regulatory and compliance requirements.

Firewall Analyser

Log Analytics and Configuration Management for Firewalls
Gaining network activity insights and keeping abreast about firewall logs is a challenging task as the security tool generates a huge quantity of traffic logs. There is a wealth of information available in the firewall configs and logs,which if mined properly can provide invaluable inputs to the organisations security posture and network performance.

Softcell’s SecureShield Firewall Analyzer is a log analytics, policy management and configuration monitoring software dedicated for firewalls It helps administrators track policy changes, optimize firewall performance and bandwidth usage, and also maintain compliance standards. It can dramatically improve visibility of the security posture and speed up responses by automation.

Firewall Config Auditor

Firewalls are critical devices that secure the communications of the organisation with the outside world. It is thus very important to ensure they are configured appropriately, in line with the organisation’s security policies as well as with external regulations and standards like ISO 27001. However doing a manual configuration audit is challenging not just in multi-firewall environments but even on a single firewall because of the large number of rules. Documentation ofthe current rules and the evolution of the changes is also not typically up-to-date.

Softcell’s firewall configuration auditor audits the configuration file of the device, reviewing it for vulnerabilities and best practices. Implementing the suggested remediations in the report will greatly enhance the security posture of the firewall.

DMARC

Why do businesses need DMARC?

Today, within a couple of minutes anyone can “spoof” your domain and send out an email pretending to be from you. This could be a

• Phishing email, designed to extract the persons credentials
• Malicious email trying to infect the target system with malware
• Mail offering a spurious job or business opportunity
• Mail with language or content that would affect your reputation/brand

Since these mails do not pass through your network (they originate from, and are delivered to a recipient outside your network), they are impossible to stop using any controls on your system. To keep your brands and customers safe from these kind of mails, the issue has to be addressed at the service provider level using DMARC (Domain-based Message Authentication, Reporting, and Conformance), which is a combination of SPF (Sender Policy Framework) and DKIM (Domain Keys Identifed Mail)