Firewalls & Security Appliances

Many security specialists will have heard the phrase “Security is  a process, not a product”. And indeed a product is only as good as the policy supporting it. In practice the process of implementing a security policy is not one-way, and is partly informed by what your security infrastructure is actually capable of.

NEXT-GENERATION FIREWALLS

As such the core of network security is still the Firewall. Stateful firewalls provide the base level of security by defining broadly who is allowed to talk to whom on your network and how they should communicate.

Firewalls are evolving however. Along with the trend of IT intelligence migrating to the network infrastructure, the next-generation suite of firewalls are both user and application aware. Whereas older generation appliances were limited to allowing web access or not, fine grained control such as blocking Facebook but allowing YouTube is now possible.

These newer products can also provide a dynamic set of criteria to network access that adapts to how the network is being used and by whom, rather than  implementing a one-size-fits-all regime. For example, by selectively allowing a broader set of network access to your executive or IT staff.

INTRUSTION PREVENTION

A wide range of complementary security devices exist to enhance security, improve services or increase network management capability.
Intrusion Prevention Systems (IPS) provide the next layer of network defence by being able to detect and block specific types of attacks and exploits without administrator intervention.

These are typically placed at the public-facing edge of your network and at a minimum ensure your network does not fall victim to well-known hacks and exploits.

 

In the best case, these devices can offer protection from as yet unknown threats through their Zero-Day Vulnerability and Live Update capabilities.

VPN

Virtual Private Networks are a network overlay technology, facilitating secure network access from remote locations. VPN technology is typically based on well-known and reliable standards, but increasingly integrated into other products suites.
Stand-alone VPN solutions still exist and may be appropriate for larger organisations.

Did you know?

Next-generation firewalls (NGFWs) are deep-packet inspection firewalls that move beyond port/protocol inspection and blocking to add application-level inspection, intrusion prevention, and bringing intelligence from outside the firewall.

Our Security Services

BGC IT Solutions has more than 14 years experience with Firewall, IPS and VPN solutions in dozens of organisations. We can provide expertise in the following areas:

  • Public, Private and Education sector Security solutions
  • Firewall & Network Design
  • Intrusion detection and prevention
  • Network monitoring,  management and audit capability
  • ISM and standards compliance
  • Secure Remote Access / VPN servicess