We continuously audit the marketplace for the latest technologies and modify Haven to ensure maximum efficacy. Current technologies include:
Endpoint- CylancePROTECT and OPTICS. CylancePROTECT is a next-generation antimalware solution that leverages machine learning to detect and prevent malware. CylanceOPTICS is an advanced endpoint detection and response (EDR) solution that can provide full visibility into attacks and local system activity. OPTICS also supports manual and automated response playbooks.
Email- Mimecast is an email security platform that provides anti-malware, spam, plus advanced threat prevention for email attachments and URL’s. In addition, Mimecast supports basic data loss prevention policies and sending encrypted emails to protect sending sensitive data to external recipients.
Network- Palo Alto Networks FW is a next-generation firewall that supports automated detection and prevention of malicious web traffic through URL and application filtering, file sandbox analysis, and SSL decryption. Additionally, Palo Alto Networks includes Global Protect VPN for secure remote access and secure access over insecure or public networks.
Vulnerability Scanning- Network and systems are routinely scanned and analyzed to strengthen system defenses. Scanning is performed monthly or as needed and reported to the Client organization to remediate vulnerabilities to reduce the organization’s attack surface that can lead to a compromise of non-public data. (NOTE: Vulnerability Scanning is part of the Haven™ package. For Haven Cloud and Haven SecureAdvisor, please inquire.)
Employee Awareness Training- Employee awareness training is delivered monthly in micro learning segments to increase employee security awareness and internet safety. Simulated phishing campaigns are delivered in parallel to help employees better detect and report potentially malicious emails. Most compromises result from human error, which can be significantly reduced by better educating personnel.
SIEM- Centralized log collection utilized by Corvid Cyberdefense security analysts to identify and respond to organizational threats. Corvid’s SIEM collects logs from endpoints, network appliances, and other IT and security technologies deployed in the Client environment.