Unified protection
Mail protection
The majority of security threats and cyberattacks happen over one of the essential business communication services: e-mail.
That is why e-mail should be especially protected. The antispam system for detection and prevention of the most common types of threats, such as ransomware, malware, identity theft, fraud attempts (targeted attacks on decision-makers) and zero-day exploits, is a must.
For this purpose Comping uses and implements Fortimail antispam solution by Fortinet.
Network protection
Digital transformation erases the boundary between the center of the network and the devices connected to it. This leads to a paradigm shift in security: the firewall is no longer the core of network security protection but rather the point of integration for all other active components that make up a comprehensive security solution.
An additional aspect of this integration is the implementation of security rules and network traffic monitoring mechanisms through all layers of the system architecture.
In addition, better visibility of all network components and reduced risk of attacks on services and user systems minimizes threats.
Endpoint protection
Protection with traditional antivirus solutions is no longer sufficient because most cyber attackers exploit flaws and vulnerabilities in installed tools and use advanced tactics such as lateral movement through local infrastructure. Moreover, attack tactics are constantly changing, so we need tools to detect even the slightest fluctuation within the system.
These fluctuations can be the first indicator of a covert attack. We use advanced EDR and XDR solutions - tools that constantly analyze large amounts of data, automate forensics, monitor system behavior and react to threats faster and more efficiently. VMware, Trend Micro, and Fortinet are the solutions we use for this purpose.
Auditing solutions
Audit management software helps companies streamline their audit processes and comply with regulations or internal policies (e.g., GDPR, ISO 27001, PCI DSS). They analyze user behavior, reduce risks within the hybrid infrastructure, create reports, automatically initiate desired activities, and warn about changes or observed anomalies.
They also reference security records in order to find answers to who accessed or changed a specific part of the system, and when and where it happened. This improves detection of local or cloud infrastructure security threats. For the activities mentioned we use Netwrix Auditor solution. We provide it either as a service or by implementing it for users with a small number of IT administrators.
