Managed
SSL VPN
S2S offers a fully managed SSL VPN remote access solution based on industry
leading technology from Juniper Networks. S2S, through its history
with Fiberlink Communications, has a long-standing partnership
with Juniper and history of providing managed network and security solutions
to Fortune 1000 companies with global deployment needs. S2S provides
a single point of contact for security device-related issues and provides
the customer with information and feedback as to best security practices
in the industry. Specific services include:
| |
SSL VPN
Monitoring and Management
S2S monitors customer
devices on an around-the-clock basis. In order
to allow S2S to capture the SSL VPN reporting
information and to make configuration changes,
S2S will access the SSL appliances for comprehensive monitoring using an IPSec
(Internet Protocol Security) VPN tunnel from our SOC (Security Operations Center)
to the customer location.
Heartbeat Monitoring
By means of a Network Management tool using a combination of SNMP (Simple Network
Management Protocol) and ICMP (Internet Control Message Protocol) through an
IPSec or SSL VPN tunnel, S2S monitors the Up/Down status of the SSL VPN in a
secure manner.
Configuration Change Requests
As part of the service, Security Help Desk engineers
will perform configuration changes on the security device as requested
by the customer.
Configuration Backup
S2S will keep a backup of the customer’s security device settings that
S2S implements on the customer’s appliance. Every time S2S makes a change
to the device settings, S2S will make a new backup. S2S will store these backups
for use in security device restorations.
Hardware and Software Restoration and On-Site
Services
S2S will provide remote engineering support
and restoration attempts in case of an equipment or licensed software
failure.
If remote attempts are not successful,
an S2S engineer may be dispatched to the customer site to complete
the restoration.
Critical Event Notification
Within fifteen (15) minutes of a critical event,
S2S will notify the customer either by e-mail and/or telephone.
Reporting
S2S will provide customer with a basic, monthly
Syslog and Event Log
report depicting historical monthly
activity for customer’s security device monitored by S2S.
|
Syslog and Event Log Reporting
S2S offers customers full Syslog
and Event Log reporting capabilities with varying service
packages, as set forth below. Customers can access their
Syslog and Event Log operational metrics from a secure,
on-line portal.
| |
Auditing Service |
| .......... |
|
• Syslog Management – log
retrieval, parsing and processing
• Syslog Storage Management – 90 days on-line, 1 year archived
• Portal Access to View Reports – on-demand, web-based access to
reports
• One audit report per week
• One management report per quarter |
| |
Auditing and Security
Service |
| |
|
• Syslog Management – log
retrieval, parsing and processing
• Syslog Storage Management – 90 days on-line, 1 year archived
• Portal Access to View Reports – on-demand, web-based access to
reports
• One security event report per day
• One management level report per month
• One management level detailed report per month |
| |
PCI Adherence |
| |
|
• Syslog Management – log
retrieval, parsing and processing
• Syslog Storage Management – 90 days on-line, 1 year archived
• Security event correlation – event normalization, correlation and
expert analysis
• Security event notification – 24x7 email/SMS notification of critical
security events
• Portal Access to View Reports – on-demand, web-based access to
reports
• One audit report per day
• One security event report per day
• One management level report per month
• One management level detailed report per month |
|
