Protective Monitoring
Local authorities that have not formally undertaken host or network intrusion detection should declare via an LA action plan if any when they intend to implement intrusion detection system (IDS).
All IDS must be implemented using approved one way taps. Additionally, Local authorities should obtain at least "partial" compliance with CESG InfoSec Memorandum
- Successful login/logoff
- Unsuccessful login/logoff
- Unauthorised Application Access
- File access
- System Changes
Suggested Solutions
Astro
 |
Astro Communications experienced engineering team have many years experience working in Local Authority environment. We are an engineering based company experienced in delivering, configuring, securing and managing Local Area Networks, Wide Area Networks and Virtual Private Networks.
Please call Dalida Möger on 01322 610169 or visit www.astro.co.uk/Local-Authority.html |
Encription
IBM
 |
Implement processes, policy and standards, supported by compliance dashboards and reporting engines.
More information can be found here |
Juniper
Logrythm
 |
LogRhythm is built from the ground up to classify, normalise, alert and report log messages in a format that maps directly to the content of CESG Memorandum 22, such as successful logon/logoff and privileged system changes. |
Safend
 |
Safend Data Protection Suite establishes automated audit trails that can reconstruct user actions. Audit trail data includes all users’ actions with a device, date and time, file name and properties. Continuous testing and auditing can be easily performed with a graphical, statistical reporting mechanism. Read More |
Sapphire
 |
Sapphire has worked with all major IDS / IPS vendors over the last decade and has extensive experience of developing a suitable, scalable protective monitoring policy in accordance with CESG guidance. For further information please email Coco Information or call 01642 702100. |
