According to the requirements of the procedure published by the Ministry of Innovation and Growth, companies participating in the program should meet the following minimum requirements when setting up a system to protect information on a local network:
- Firewall to filter internet traffic;
- Intrusion Detection System (IPS);
- Centrally managed system to protect servers and workstations from malicious code and network attacks (EDR);
- Internet access management and filtering to limit access to unwanted sites;
- Centralized access control integrated with all system components, including network connectivity via wired or wireless connection and multi-factor authentication (MFA);
- Ability to securely access the organization's resources remotely (VPN);
- Centralized collection, analysis, and monitoring of log files for cybersecurity event identification (SIEM), which aggregates logs from the above systems.
- Hardware items included in the minimum scope: Virtual Server, or Physical Server; wireless access points; network switch; network router.
Proposal for a solution
We propose to build the organization’s secure network with WatchGuard Next Generation Firewall, an “All-In-One” next generation network security solution.
- WatchGuard Firebox provides Internet security, application protection and data protection;
- Quickly and easily deploy, configure and maintain security;
- With an easy-to-use interface from where a number of access policies can be set that allow you to: divide users on the network into different groups; restrict access to pages and resources on the Internet; block access to free mail; set a time interval for the restrictions to take effect, and more.
- Prevent, detect and respond immediately to cyber attacks with automated policies;
- Allocate and prioritize traffic to applications;
In addition, WatchGuard Firebox provides reliable protection against one of the most current attacks, CryptoLocker, where files are encrypted and a ransom is demanded for the decryption key. Each device includes software – Total Security Suite, which provides:
- Intrusion Prevention
- Gateway Antivirus
- Application control
- Web Blocker
- SpamBlocker
- Reputation Enabled Defense
- Network Discovery
- APT Blocker
- Threat Detection and Response
- DNSWatch
- Access Portal
- IntelligentAV
- Dimension Command
- 24×7 GOLD support
Additional WatchGuard product options (add-ons)
AuthPoint
Effective MFA protection with unique mobile DNA – AuthPoint uses a mobile device’s DNA to match an authorized user’s phone when granting access to systems and applications. Therefore, if a cloned device attempts to access the protected system, it will be blocked – as the DNA of the device will differ:
- Protect user identities;
- Secure remote access via VPN;
- Protect employee entries;
- Secure cloud applications;
- Single sign-on (SSO) portal;
- Be compliant with legal and internal regulations.
Endpoint Detection and Response (EDR)
A complete endpoint security solution. WatchGuard EDR responds to known and unknown threats by providing visibility and control of applications running on the network. Adding WatchGuard EDR on top of an endpoint antivirus solution fills in the gaps for comprehensive and effective endpoint security.
