VxClouds proposed solution is to utilise the internet to gain access to important company information and applications as well as private and public cloud solutions. Our SD-WAN solution is a major step in creating a secure internet access networking medium. We have partnered with ZSCALER to create an integrated SD-WAN and secure WEB Access solution. The focus point of the solution is to controll internet access, prevent access to un-authorised internet content and to secure information that is transferred to and from the internet. ZSCALER is integrated into the VxCloud SD-WAN solution hosted in South Africa. The “No More Appliances” approach is a major business driver for VxCloud.
VxCloud realises that todays applications are in the cloud and almost all organisations are accessing some type of cloud service or solution. These types of trends expand the attack surface for the network and branch offices. Cloud security is an important concern for all CIO and IT managers and is becoming a bigger issue with cloud solutions and access growing daily. Enter the VxCloud Delivered SD-WAN that provides a robust architecture uniquely flexible to secure both traffic and data, deployed as a secure overlay to networking or internet service providers. With several different deployment architectures, a Cloud-Delivered SD-WAN accommodates the needs of even the most security sensitive business. It also returns to corporate IT the security, compliance and control it needs to be safe.
VxCloud has partnered with one of the leading Firewall solution providers in the world and included Firewall services as part of our SD-WAN solution. VxCloud can protect the clients offices from unauthorised access through the internet and also include a robust and well supported firewall. Security is a key consideration in distributed network deployments. Attempting to secure the modern distributed enterprise with a traditional centralized security approach is like trying to keep rain off a football game using umbrellas. We also include our security services in the cloud connections hosted in Azure and AWS to create end to end cloud security managed service.
Small and medium-sized businesses (SMBs) now confront the type of advanced cyberthreats that previously targeted only the largest and most sophisticated enterprises. Unfortunately, these businesses typically lack cybersecurity experts on their IT staff. What’s more, they lack the budget necessary to fully secure their organization with an in-house Security Operations Centre (SOC).
VxCloud SOC-as-a-Services sensor is deployed in the clients IT infrastructure reporting back to the SOC with secure information to be analysed. Sensors are both physical and virtual to support hybrid cloud configurations such as Azure and O365. Sensor will support scanning of operations systems , servers, firewalls, desktops and more.
Small, Medium and Large Enterprise Advanced Security
VxCloud offers customers managed detection and response services by providing an end to end SOC security solution. The solution is significant because it provides a full turnkey SOC-as-a-Service solution from VxCloud small to medium enterprises.
VxCloud Hybrid Security
VxCloud SOC-as-a-Service solution includes both on-site and cloud instrumentation to collect security logs from a customer site. VxCloud securely routes security information to a cloud-based, purpose-built SIEM platform than can ingest, parse and analyse unlimited amounts of log data.
VxCloud Cost Effective Security
No expensive upfront costs are incurred partnering with VxCloud as your preferred SOC-as-a-service provider. VxCloud as an example offers a predictable, subscription-based pricing model for clients. It is again a new smart-tech concept to provide SD-WAN cloud networking with integrated security services.
VxCloud Security Staff
VxCloud Security Engineer (VSE) is allocated to a client as a single point of contact for the clients SOC-as-a-Service. Clients VSE is your trusted security advisor and an extension of your internal security team. Conducts daily triage and forensics including customized services to your needs.
VxCloud Security Hybrid AI
Hybrid AI demonstrably identifies attacks, reduces false positives, and speeds up the time between detection and response. It augments a security engineer’s expertise with the efficiency and productivity of artificial intelligence. 10 times better threat detection coupled with Human Intelligence and intuition.
VxCloud SOC Rules Engine
Customized Rules Engine provides unlimited flexibility to tailor the SOC services to the specific needs of every customer. VxCloud Security Engineer will apply exact security and operational policies and update them as needed to align expeditiously with your changing business needs.
VxCloud AD Security
Validate logging for optimal reporting and forensic capabilities. Tracking of AD, DHCP, DNS, changed to GPO, User changes, computer changes and failed logins. VxCloud SOC as a Services also includes semi-annual strategic reviews that will make sure AD is managed optimally and secure.
VxCloud Firewall Security
VxCloud collects your existing firewall configurations and network infrastructure diagrams. Meet firewall team and reviews the current configuration including zones, segments, object naming policies, rules and traffic policies. Recommend changes, backup and manage perimeter.
VxCloud Response Simulation
Response Simulation Service from VxCloud enables clients to assess the RS readiness with the guidance of our security experts who run multiple SMB SOC-as-a-Service. We review your current RS plan or develop one customized to your needs. CyberSOC process services end to end, deployed and managed.
VxCloud SD-WAN Security
VxCloud SD-WAN NFV (Network Function Virtualisation) includes Firewall Virtualisation from Fortinet, Palo Alto and Check Point. SD-WAN gateways, CPE devices and Firewalls are integrated and managed from the VxCloud SOC-as-a-Service managed solutions. SD-WAN security is top of mind for VxCloud.
Network and Hybrid Cloud CyberSOC
VxCloud End to End Cyber Security Monitoring and Management
Frequently Asked Questions
What is the role of a VxCloud System Engineer in the SOC-as-a-service offering?
First and foremost the Security Systems Engineer is the face of VxCloud to the customers. From day one the customer’s security engineer is their primary point of contact. Secondly they provide all the background security expertise for the service. They review incidents, they review alerts and they generate reports. This is typically done for dedicated customers, but we’ll also take turns across the customer base so that we have a variety of eyes looking at different data sources, and no one gets bored or alert-fatigued from reviewing the same data over and over again.
How is VxCloud security SE-based service different from other managed SIEM/SOC services?
Having that personalized service, that one-on-one relationship, really allows us to leverage knowledge and implement customisations in ways that other vendors can’t. Your SE already knows you and your history, which allows us to be effective and to not waste the end user’s time by asking repetitive questions or asking them to explain something multiple times in a given month or quarter if it’s an ongoing issue.
What threat hunting activities do you perform to keep customers protected from advanced threats such as APTs and zero-days?
Each team member is assigned a certain amount of research work in a given week. This is part of how we keep team members fresh, so they aren’t constantly doing the same type of work, and now have a chance to do something a little more on the cutting edge of threat hunting.
Sometimes we have them pick off a type of data such as Active Directory data, or DNS data or firewall data, and look at all of our customer data for a 90-day period or a year in search of anomalies or patterns. They’ll look through our different intelligence feeds and align them with what we’re doing for customers.
Our SEs also work with our security research teams—dedicated people from R&D who add in new algorithms and machine-learning techniques for continuous monitoring—to bring certain trends to their attention, maybe an interesting way to look at SSL traffic, so we can always stay sharp.
If there is a security incident, how does VxCloud inform the customer and ensure that it gets resolved?
If we see something like ransomware and phishing, we call the customer directly. We open a ticket and track all of those interactions, but we want to talk to a human because time is of the essence. Once we notify the customer, for instance, that a certain machine has ransomware, we can certainly go into our appliances and quarantine that device.
But more often than not, it’s about dispatching the right person from the customer to that location to unplug the machine and collect the data we need to perform forensics. In those critical scenarios, we’re in real time on the phone with the customer.
What is VxCloud CyberSOC?
VxCloud offers a SOC-as-a-service solution that meets the specific critical security requirements of small-to-medium enterprises. VxCloud CyberSOC is affordable and deploys in less than 60 minutes. It provides continuous network monitoring, log aggregation and correlation, incident response and Detection Response services, as well as personalized security services with a named security engineer to improve each customer’s overall security posture.
Where can I get more information on CyberSOC Products?
What is a SOC?
A SOC is a combination of cybersecurity personnel, threat detection and incident response processes, as well as supporting security technologies that, in sum, make up an organization’s security operations. As cyberthreats evolve and grow, SOCs are gaining momentum. Increasingly, SMB’s are forgoing decentralized security operations, and enjoying the many benefits a SOC offers.