XAND Corporation
Business Solutions
Colocation
Enterprise Hosting
Business Continuity
Storage Solutions
Security Solutions
XAND navigation

Security Solutions - We Protect Your Data

Today's fast-paced marketplace requires organizations to open their networks to customers, suppliers, and business partners. This same openness however, brings security risks that must be properly managed.

The frequency and sophistication of network attacks is growing with the use of automated hacking tools that can inflict catastrophic damage in just a few hours. Left undetected or improperly corrected, vulnerabilities provide an open door for 99 percent of all network attacks. Despite best efforts by IT, assets continue to be accessed, crippled or even rendered inoperable by unauthorized individuals, worms, or other threats. The consequences for anything less than a rigorous dedication to security are great. Outages caused by hackers and viruses cost businesses millions in actual revenue, and even more in lost reputation, diminished customer confidence each year.

Xand understands that keeping up with security is a full-time job for any organization. Software patches are released almost daily as new vulnerabilities are discovered, cyber crimes are detected, and virus definitions are updated. Hackers are continually probing networks and servers for any vulnerability to exploit. Monitoring for patterns in network traffic to detect suspicious activity requires around-the-clock dedication, expertise, and sophistication. For companies that don't have security as a core competency, building the infrastructure, staffing and personnel, and maintaining a practice can be a heavy investment, fraught with risk.

Security encompasses far more than keeping unauthorized people out of a data center. Logical security includes Intrusion Detection, Host-Based Intrusion Detection, OS Hardening, Patch Management, Firewalls and Secure VPNs.  Xand engineers work with customers to sort through security options to find the solution that's right for you.

Whether we manage a single device or the entire security infrastructure, Xand customers realize important benefits:

  • Real-time, 24x7x365 security management, monitoring and support
  • World-class security built on industry-leading technologies and tools
  • Reduced operational and personnel costs
  • Improved data integrity with the highest levels of authentication, access control, and confidentially
  • Lowered total cost of ownership (TCO) for security infrastructure
  • Cost-effective access to advanced intrusion detection and protection technologies

Firewalls
At the core of any effective security program is the firewall, whose primary role is simple: to filter all packets and determine which ones should be forwarded to the network based on a ruleset.

Firewalls can scale vertically to accommodate a range of traffic volumes, and can be configured as redundant pairs to provide continuous service in the event the primary firewall fails. Firewalls can be deployed as dedicated appliances or in shared configurations. A dedicated firewall is the most common deployment method, especially for customers who want firewalls at various points throughout their configuration. However, shared firewalls are becoming increasingly common, especially for smaller configurations where traffic volume doesn't justify a dedicated appliance.

Xand provides a choice of firewall configurations and deployment options. In addition, we take full responsibility for the procurement, installation, configuration and ongoing administration and maintenance of your firewalls. We also recommend upgrades and modifications when appropriate.

Intrusion Detection
Enterprise-class intrusion detection monitoring, management and incident response offers front-line defense for attacks such as denial of service. Xand delivers real-time security that proactively monitors and identifies hacking and other suspicious activities, 24x7x365, extending the protection of your firewall. It provides alerts when someone tries to breach your system and, just as important, it addresses attempted threats and blocks them as they become known.

Network-Based
Network-based intrusion detection starts at the network perimeter and moves inward, checking for traffic patterns that indicate a possible security threat. There is inherent ambiguity with any intrusion detection service, since you do not know if a pattern is an actual threat or simply resembles a threat. The key to success for any intrusion detection system is experienced security professionals who discard obvious false positives and focus on alerts that represent the greatest likelihood of being a threat.

Once detected and validated as a threat, our security professionals employ remediation to end the threat. Xand's Incident Response is modeled after Carnegie Mellon's Computer Security Incident Response Team (CSIRT) development guidelines.

Host-Based
Host-based intrusion detection works in conjunction with network-based intrusion detection to provide a comprehensive intrusion detection service. Where network intrusion detection focuses on all traffic, host-based Intrusion Detection is concerned with traffic on a specific server or host. The concept is the same in that traffic is monitored and alerts get generated whenever traffic is observed that may represent a threat.

SSL Accelerators
Secure Socket Layer (SSL) is the industry standard protocol used to deliver secure content over the Internet, and SSL use continues to grow dramatically as the Internet becomes the primary medium for a wide variety of confidential transactions.

SSL protection, however, comes at a high cost on the performance of Web sites. The severe performance penalties for Web sites result in the undesirable consequences of lost productivity, lost customers, and lost sales. Enterprises, web hosting facilities, and data centers often add more HTTPS servers to handle SSL bottlenecks - an inefficient and costly solution. SSL offloaders are optimized appliances that seamlessly handle all SSL transactions to enable Web sites to dramatically boost their performance at a fraction of the cost of HTTFS servers.
Xand understands that efficiently serving and scaling SSL is a key factor for many types of enterprise applications.  Our solutions are designed to meet the needs of any browser-based application requiring security, including the most demanding enterprise applications. Our flexible offerings efficiently offload server-draining SSL encryption/decryption from web servers to increase web server performance.

Xand delivers value to customers in several ways:

Seamless Integration - VeriCenter Solution Architects seamlessly integrate SSL Accelerators into infrastructure for optimal performance.

Certificate and Key-Management SSL Accelerators provide centralized management of keys and certificates.

Highly available, reliable solutions - Multiple accelerators can be combined to create high-availability solutions for mission-critical secure servers.

Managed Services - Xand manages, monitors and maintains SSL solutions, allowing customers to focus on their core business.

Vulnerability Scan
Xand’s Vulnerability Scan service is designed to scan your systems looking for the same vulnerabilities that malicious hackers and worms are looking for. However, we report those vulnerabilities to you so that you can take proactive measures against potential problems. In essence, vulnerability scanning puts your security exposure back in your hands and out of those who want to do you harm.

Once per day, week, or on-demand, Xand will scans your system to determine which ports are open. The services on those ports will be identified and tested for more than 7,000 vulnerabilities. Ports that aren't specifically scanned will still be tested for vulnerabilities if they are ports common to specific applications.
On-demand scans will be provided a report with summary and detail sections describing potential vulnerabilities found and in most cases information on how to correct or work around the problem.

If you use our daily or weekly scanning service then you will get two reports. One is the full report that details all of the potential vulnerabilities found. The other will show just the new vulnerabilities detected. This allows you to really optimize your time. You go over the first scan of your systems using the full report. After that, all you need to do is look at the differences report and take care of any new issues.

 

xand email hosting and managed servers request a tour data vault high availability migration services hosted mail join xand's mailing list request a tour data vault high availability migration services hosted mail

join our mailing list
about us services tech infrastructure partners news blog contact sitemap home tour xand mailing list tech partners green it tour xand xcare