IT Architecture & Strategy
Business context
Based on years of experience working with multinational organizations, our technical consultants will start by understanding your requirements, work with you to produce a design using state of the art technical components, build a proof of concept and when you are ready; will help you to migrate through to a production environment.
Transform your IT Landscape by using consulting services from Expertware.
Technical Architecture
Designing Enterprise-class systems for the Data Centre using the latest technologies for high availability, clustering, and business continuity, and also by optimizing infrastructure through the use of server virtualization and extensive experience of high-end storage and synchronizing data across multiple locations.
Expertware has carried out several multi-country Data Centre moves with minimum disruption of business-critical applications. Subsequently, Expertware has extended its skillset into the desktop virtualization space, providing effective solutions for customers looking to improve security and flexibility and at the same time by reducing costs.
It’s also a great way of provisioning desktops for employees using BYOD (Bring Your Own Device).
Technology Transformation is where Expertware started their business
End-to-end security
A chain is as strong as the weakest link. We've seen (too) many times organizations which defended very well their borders with state-of-the art firewalls, multi-layered protection, real-time vulnerability assessment while leaving allowing weak/leaked applications accounts.
The investments might be jeopardized by a single overlooked configuration item.
Therefore, we propose a holistic approach ensuring hardening for each of the layers involved:
- Border, layered security
- Application publishing and reverse proxies
- Hypervisor security
- Container-based security (Kubernetes), network interconnects to remote Data Centers, Clouds, SaaS apps
- NAC: Access to internal network and Wi-fi
- Authentication & Federation: LDAPs, AD-FS
- OS hardening: server and workstations group policies
- Authorization: SSO, Privileged Access Management and Audit, On-demand Privileged Access, Application-Aware Firewalls, segregation of duties (SAP GRC, Archer GRC), credential Vault
- Encryption: Certificate Management (PKI infrastructure and certification authorities), always encrypted server to server communication, disk/database / backup/archive.
- Security Information and Events Management (SIEM): correlations of security events and alerts from multiple sources (Elasticsearch, Splunk, Apache Metron).
Identity & Access Management
Gain control & visibility within your organization system.
SIEM & SOC
Prevent potential security breaches while you increase efficiency.
Identity & Access Management
Give access to the right users at the right time.
Increase your productivity and improve the User Experience while reducing your IT costs.
What we actually do?
- Network segmentation (Front end, Back-End DMZ, separation of instances, isolation for critical systems), privileged Access Management, continuous monitoring, privileged access workstations, federation (ADFS, OAuth)
- Identify weak or compromised accounts. Ensure standard and privileged accounts do not share the same password.
- Automate user activity and privileged access audit reports.
- Automate compliant user provisioning and removal based on user profiles (see Xpert.IAM app)
- Example: when a user leaves the company, we make sure that all user-related identities are disabled from all LDAP or applications.
- Audit service accounts, implementing managed service accounts, automatic password change processes.
SIEM & SOC
What we actually do?
- Design and deployment of integrated SIEM solutions.
- Define sensitive events that must be captured, configure the log aggregation, multi-source correlations, translate, prioritize and configure vulnerability use-cases based on the MITRE ATT&CK framework.
- Leverage Elasticsearch partnership and collect events from multiple sources and logs, aggregate and visualize them in custom Kibana dashboards.
- Configure multiple indexes based on the source data types.
Network Access Control
Host Intrusion Detection Systems
Network Access Control
Every day, we encounter cyber-attacks and BYOD threats.
In order to be prepared, the implementation of the NAC system has become a necessity, as no one wants to compromise their company’s system or/and its data.
Day by day, a multitude of devices used within the company are connecting to the company’s network. Are they safe?
What we actually do?
- Design & Deployment and Operational Management for Network Access Controlled solutions for wired and wireless LAN and various client OSS (Windows, Linux, Android, iOS).
- Segregation of traffic flows (guest, captive portal, remediation, mobile, intranet), hardening, deployment of dot1x setting to endpoints, automation for endpoints which are not compliant.
- Integration of HID and NIDS solutions with NAC.
- Customization and deployment of security policies (WMI rules, GPO settings).
Host Intrusion Detection Systems
What we actually do?
- Enhance customer end-points protection, streamline and automate remediation actions based on security alerts.
- Plan, deploy and manage deployments of HIDs agents to end-user devices and integrate them in with SOC / SIEM / NAC.
- Monitor the configuration and the dynamic behavior, show performance and services baseline, and detect anomalies and trigger alerts.
- Configure correlation with live threat sources, set up checksum for relevant objects (binaries, files, registries).
- Continuous assessment for MITTRE attack vectors and translation to HIDS detection rules/alerts.
- Solutions covered: OSSEC, Tripwire, Wazuh, Endgame.
Business Intelligence
Licensing Optimization
Business Intelligence
Our consultants can be present on your site or you can take advantage of the cost benefits that occur by utilizing the team of engineers working at our European nearshore office. All the time, our people are working under the responsibility of a senior team member.
Licensing Optimization
Optimize licensing costs and benefit from the right choice of software and services bundles.
The traditional licensing model is continuously challenged and constantly reshaped to evolve towards a “license as a service”.
This evolution aligns with the general trend in the industry to position the hardware and software infrastructure offer “as a service”.
With our experience in server & desktop products (MS Silver Data Center services, MS Cloud Solutions Provider), we guide organizations through the complex, interlinked and ever-changing licensing agreements.
We map applications’ infrastructure with immediate and forecasted business needs, identify opportunities and assist the transformation process.
Optimize the licensing costs without losing functionality nor performance.
Copyright © 2020 - All Right Reserved.