Intrusion Detection

Intrusion detection systems are another part of the “defence in depth” strategy for information security. Currently they are only deployed by the most security-conscious companies, but they can provide a wealth of data during a hacker penetration.

There are a number of different types of intrusion detection system. We use the open-source SNORT package as it allows us to operate secure sensors throughout the network and to transmit the results in an encrypted form to a central security server. SNORT looks for data on the network that is characteristic of hacker activity. When such data is detected an alert can be logged and a copy of the data can be sent to the security server for offline interpretation. SNORT can also be tailored to look for specific patterns in the network traffic.

We can help you acquire intrusion detection technology in one of 3 ways

• Client hardware – where we install SNORT on to some of your unused workstations and help interpret the results for the IT team.
• Bespoke Systems – where we provide a complete package of hardware and software, installed on your network. We can also provide training for your IT staff to operate and interpret the results.
• Detection System loan – we can install our own hardware and software onto your network and provide the results directly to the IT team.

Please contact us to discuss your requirements, in confidence.