SlideShare a Scribd company logo

NetGains Infrastructure Security

Download as PPT, PDF
N
NetGains Technologies Pvt. Ltd.

The document describes a layered approach to securing a NetGains Mail & Application server. It involves implementing security measures at five levels - perimeter, network, host, application, and data. Different security tools are used at each level, including firewalls, intrusion detection systems, antivirus software, access controls, and encryption. The layered approach provides redundant security by having multiple levels of protection for the server.

Technology
Related topics:
Cloud Security Insights Data SecurityEmail Security Overview
1 of 8
Downloaded 16 times
1
2
3
4
5
6
7
8
NetGains Mail & Application Server Confidentiality & Security – Layered Approach Layered approach for securing NetGains Mail & Application Servers. It is a technical strategy, espousing adequate measures be put in place at different levels within the network infrastructure. It is also an organizational strategy, requiring participation from the clients, users, administrators & business owners. The layered-security approach centers on maintaining appropriate security measures and procedures at five different levels within the IT environment
NetGains Mail & Application Server Confidentiality & Security – Layered Approach Security level Applicable security measures 1. Perimeter • Firewall • Network-based anti-virus 2. Network • Intrusion detection /prevention system • Vulnerability management system • Endpoint security compliance • Access control /user authentication 3. Host Host 4. Application • Host IDS & Host VA • Access control/user authentication • Input validation 5. Data • Encryption • Access control/user authentication IDS & Host VA Endpoint security compliance Anti-virus Access control/user authentication
NetGains Mail & Application Server Confidentiality & Security – Layered Approach LEVEL 1: PERIMETER SECURITY    The perimeter is the first line of defense from outside, un-trusted networks. The perimeter acts as the first and last point of contact for security defenses protecting the network. It is the area where your network ends and the Internet begins. Sonic FireWALL PRO 3060      Real-Time Gateway Anti-Virus, Anti-Spyware and Intrusion Prevention. Powerful Content Filtering. Deep Packet Inspection Firewall Real-Time Blacklist Spam Filtering Policy-based NAT
NetGains Mail & Application Server Confidentiality & Security – Layered Approach LEVEL 2: NETWORK SECURITY The network level of the layered-security model refers to internal LAN and WAN. • Intrusion detection systems (IDSs) and intrusion prevention systems (IPSs) • Vulnerability management - Vulnerability management systems perform two related functions: (1) they scan the network for vulnerabilities and (2) they manage the process of repairing the vulnerabilities found. • Endpoint security compliance (for VPN & RAS devices) • Access control/authentication (Network Level access) Answer: The Network level done administration is done by the ISP
NetGains Mail & Application Server Confidentiality & Security – Layered Approach LEVEL 3: HOST SECURITY In the layered-security model, the host level pertains to the servers configurable parameters that, when set inappropriately, can create exploitable security holes. These parameters include registry settings, services (applications) operating on the device, or patches to the operating system or important applications.  Host-based intrusion detection systems (IDSs)  Host-based vulnerability assessment (VA)  Endpoint security compliance  Anti-virus  Access control/authentication Answer: * For this we use Trend Micro Interscan Messaging Security Suite which gives protection against Viruses, Spam and FTP traffic.
NetGains Mail & Application Server Confidentiality & Security – Layered Approach LEVEL 4: APPLICATION SECURITY Application-level security is currently receiving a great deal of attention.      Poorly protected applications can provide easy access to confidential data and records. The hard truth is that most programmers don’t code with security in mind. Application shield - application-level firewall. Access control/authentication - only authorized users are able to access the application. Input validation - Input validation measures verify that application input traveling across your network is safe to process.
NetGains Mail & Application Server Confidentiality & Security – Layered Approach LEVEL 5: DATA SECURITY Data-level security entails a blend of policy and encryption. Encrypting data where it resides and as it travels across your network is a recommended best practice because, if all other security measures fail, a strong encryption scheme protects your proprietary data. Encryption Important Customer data is stored in the SQL Server Database and is completely encrypted. Access control / authentication There is a role based access to data. Eg  A programmer has access only to Application files.  Important Customer data & Profile is stored in Database and only DBA can access it.  An Administrator of the system can only administer the data and has no access to database & applications.  RAID 10 for Hard-disk redundancy.  TAPE backup
NetGains Mail & Application Server Confidentiality & Security – Layered Approach Thank You ! NetGains Technologies 708/709, Corporate Avenue, Sonawala Lane, Goregaon(E) Mumbai – 400 063. Sales: +91-22-6525 7000 / +91-22-6139 7000 Mobile : 9820089256 / 989200782

More Related Content

PPTX
Automating for NERC CIP-007-5-R1
Tripwire
 
PDF
Fighting The Top 7 Threats to Cloud Cybersecurity
David Zaizar
 
PPTX
F secure Radar vulnerability scanning and management
F-Secure Corporation
 
PDF
Virtual Web Application Firewall (vAWF) Data Sheet - Array Networks
Array Networks
 
DOC
Shashikant Chavan_Resume
Shashikant Chavan CCNA, C|EH, ITIL V3
 
PPTX
6 Steps to Secure Network Devices
Lisa Kearney
 
PDF
Internet gatekeeper
F-Secure Corporation
 
PPT
CDM….Where do you start? (OA Cyber Summit)
Open Analytics
 
Automating for NERC CIP-007-5-R1
Tripwire
 
Fighting The Top 7 Threats to Cloud Cybersecurity
David Zaizar
 
F secure Radar vulnerability scanning and management
F-Secure Corporation
 
Virtual Web Application Firewall (vAWF) Data Sheet - Array Networks
Array Networks
 
Shashikant Chavan_Resume
Shashikant Chavan CCNA, C|EH, ITIL V3
 
6 Steps to Secure Network Devices
Lisa Kearney
 
Internet gatekeeper
F-Secure Corporation
 
CDM….Where do you start? (OA Cyber Summit)
Open Analytics
 

What's hot (20)

PPTX
Critical Controls Of Cyber Defense
Rishu Mehra
 
PDF
Powerful email protection
F-Secure Corporation
 
PPTX
FCI-company profile
Amit Sardar
 
PDF
Willard_Grayson_2015
Will Grayson
 
PPT
TALK Cybersecurity Summit 2017 Slides: Chris Goggans on Vulnerability Assessment
Dawn Yankeelov
 
PDF
Enterprise firewalls feature and benefits
Anthony Daniel
 
PDF
Protection Service for Business
F-Secure Corporation
 
PPT
GDI Product Presentation
tswong
 
PPTX
Slides
Fungayi Makoni
 
PPSX
Cloud monitoring - An essential Platform Service
Soumitra Bhattacharyya
 
PDF
Business Suite - Gain control of your IT security
F-Secure Corporation
 
PDF
F-Secure E-mail and Server Security
F-Secure Corporation
 
PDF
Attachment 1 – mitigation measures for two factor authentication compromise
Hai Nguyen
 
PPTX
Inside forti os-v524-r5
Lan & Wan Solutions
 
PDF
Virtual Security
F-Secure Corporation
 
PDF
Using Advanced Threat Analytics to Prevent Privilege Escalation Attacks
BeyondTrust
 
PDF
F-Secure Policy Manager - onsite security management with superior control
F-Secure Corporation
 
PDF
5 Important Secure Coding Practices
Thomas Kurian Ambattu,CRISC,ISLA-2011 (ISC)²
 
PPTX
2019 01-30 Firewalls Ablaze? Put Out Network Security Audit & Compliance Fires
Liraz Goldstein
 
PPTX
Hyper Secure Converged Infrastructure solves architectural challenges
Kim Bookout
 
Critical Controls Of Cyber Defense
Rishu Mehra
 
Powerful email protection
F-Secure Corporation
 
FCI-company profile
Amit Sardar
 
Willard_Grayson_2015
Will Grayson
 
TALK Cybersecurity Summit 2017 Slides: Chris Goggans on Vulnerability Assessment
Dawn Yankeelov
 
Enterprise firewalls feature and benefits
Anthony Daniel
 
Protection Service for Business
F-Secure Corporation
 
GDI Product Presentation
tswong
 
Slides
Fungayi Makoni
 
Cloud monitoring - An essential Platform Service
Soumitra Bhattacharyya
 
Business Suite - Gain control of your IT security
F-Secure Corporation
 
F-Secure E-mail and Server Security
F-Secure Corporation
 
Attachment 1 – mitigation measures for two factor authentication compromise
Hai Nguyen
 
Inside forti os-v524-r5
Lan & Wan Solutions
 
Virtual Security
F-Secure Corporation
 
Using Advanced Threat Analytics to Prevent Privilege Escalation Attacks
BeyondTrust
 
F-Secure Policy Manager - onsite security management with superior control
F-Secure Corporation
 
5 Important Secure Coding Practices
Thomas Kurian Ambattu,CRISC,ISLA-2011 (ISC)²
 
2019 01-30 Firewalls Ablaze? Put Out Network Security Audit & Compliance Fires
Liraz Goldstein
 
Hyper Secure Converged Infrastructure solves architectural challenges
Kim Bookout
 
Ad

Similar to NetGains Infrastructure Security (20)

PPT
Essentials Of Security
xsy
 
PPT
Emea Corporate Presentation 0709 Lin
Joe Sarno
 
PPS
Application Security Review 5 Dec 09 Final
Manoj Agarwal
 
PPTX
Cyber Security # Lec 4
Kabul Education University
 
PPTX
Computer Security.pptx
KENNEDYDONATO1
 
PDF
Barbed Wire Network Security Policy 27 June 2005 7
Khawar Nehal khawar.nehal@atrc.net.pk
 
PPTX
Web security
Himanshu Tyagi
 
PPT
Material best practices in network security using ethical hacking
Desmond Devendran
 
DOCX
Discuss how a successful organization should have the followin.docx
salmonpybus
 
DOCX
Discuss how a successful organization should have the followin.docx
cuddietheresa
 
PPT
Cisco Managed Security
Srivatsan Desikan
 
PDF
Implementing Application Security
Information Technology
 
PPT
Partner Zymbian & Fortinet webinar on Web2.0 security
Zymbian
 
PPTX
Product Overview Nov 2010 V1
Alvaro Roldan Peral
 
PPT
Information Security
Mohit8780
 
PDF
The application security controller
Chris Swan
 
PPT
Network Security Tools and applications
webhostingguy
 
PPTX
Security on a budget
nCircle - a Tripwire Company
 
PPT
Microsoft Forefront - Secure Messaging & Online Protection for Exchange Over...
Microsoft Private Cloud
 
PPTX
7-Layers-of-Security-Protecting-Your-Digital-Fortress (1).pptx
SerdarHudaykuliyew
 
Essentials Of Security
xsy
 
Emea Corporate Presentation 0709 Lin
Joe Sarno
 
Application Security Review 5 Dec 09 Final
Manoj Agarwal
 
Cyber Security # Lec 4
Kabul Education University
 
Computer Security.pptx
KENNEDYDONATO1
 
Barbed Wire Network Security Policy 27 June 2005 7
Khawar Nehal khawar.nehal@atrc.net.pk
 
Web security
Himanshu Tyagi
 
Material best practices in network security using ethical hacking
Desmond Devendran
 
Discuss how a successful organization should have the followin.docx
salmonpybus
 
Discuss how a successful organization should have the followin.docx
cuddietheresa
 
Cisco Managed Security
Srivatsan Desikan
 
Implementing Application Security
Information Technology
 
Partner Zymbian & Fortinet webinar on Web2.0 security
Zymbian
 
Product Overview Nov 2010 V1
Alvaro Roldan Peral
 
Information Security
Mohit8780
 
The application security controller
Chris Swan
 
Network Security Tools and applications
webhostingguy
 
Security on a budget
nCircle - a Tripwire Company
 
Microsoft Forefront - Secure Messaging & Online Protection for Exchange Over...
Microsoft Private Cloud
 
7-Layers-of-Security-Protecting-Your-Digital-Fortress (1).pptx
SerdarHudaykuliyew
 
Ad

More from NetGains Technologies Pvt. Ltd. (11)

PPTX
Successful employees
NetGains Technologies Pvt. Ltd.
 
PPSX
Multi channel communication center M3C
NetGains Technologies Pvt. Ltd.
 
PPSX
Email + social marketing
NetGains Technologies Pvt. Ltd.
 
PPSX
Office connect hybrid microsoft exchange
NetGains Technologies Pvt. Ltd.
 
PPTX
DR hosting & cloud
NetGains Technologies Pvt. Ltd.
 
PPT
Email deliverability
NetGains Technologies Pvt. Ltd.
 
PPT
Demystifying email deliverability
NetGains Technologies Pvt. Ltd.
 
PPTX
M3C email-marketing_sms_platform
NetGains Technologies Pvt. Ltd.
 
PPTX
Website redesign tips-tricks_1
NetGains Technologies Pvt. Ltd.
 
PPTX
Digital signature & certificate
NetGains Technologies Pvt. Ltd.
 
PPT
eSigner.NET - Digital Signing and Encryption the easy way
NetGains Technologies Pvt. Ltd.
 
Successful employees
NetGains Technologies Pvt. Ltd.
 
Multi channel communication center M3C
NetGains Technologies Pvt. Ltd.
 
Email + social marketing
NetGains Technologies Pvt. Ltd.
 
Office connect hybrid microsoft exchange
NetGains Technologies Pvt. Ltd.
 
DR hosting & cloud
NetGains Technologies Pvt. Ltd.
 
Email deliverability
NetGains Technologies Pvt. Ltd.
 
Demystifying email deliverability
NetGains Technologies Pvt. Ltd.
 
M3C email-marketing_sms_platform
NetGains Technologies Pvt. Ltd.
 
Website redesign tips-tricks_1
NetGains Technologies Pvt. Ltd.
 
Digital signature & certificate
NetGains Technologies Pvt. Ltd.
 
eSigner.NET - Digital Signing and Encryption the easy way
NetGains Technologies Pvt. Ltd.
 

Recently uploaded (20)

PDF
Encapsulation_ Review paper, used for researhc scholars
gurumoop
 
PPTX
MYSQL Presentation for SQL database connectivity
Swati270511
 
PDF
Electronic commerce courselecture one. Pdf
OmerMohamed64
 
PPTX
20250228 LYD VKU AI Blended-Learning.pptx
DatVoNgoc
 
DOCX
The AUB Centre for AI in Media Proposal.docx
GAONE9
 
PDF
Profit Center Accounting in SAP S/4HANA, S4F28 Col11
Libreria ERP
 
PDF
Spectral efficient network and resource selection model in 5G networks
IAESIJAI
 
PDF
TokAI - TikTok AI Agent : The First AI Application That Analyzes 10,000+ Vira...
SOFTTECHHUB
 
PDF
Chapter 3 Spatial Domain Image Processing.pdf
Getnet Tigabie Askale -(GM)
 
PDF
Build a system with the filesystem maintained by OSTree @ COSCUP 2025
Jian-Hong Pan
 
PPTX
VMware vSphere Foundation How to Sell Presentation-Ver1.4-2-14-2024.pptx
blackmambaettijean
 
PDF
Mobile App Security Testing_ A Comprehensive Guide.pdf
flufftailshop
 
PPTX
Cloud computing and distributed systems.
kkkkkhan
 
PDF
Review of recent advances in non-invasive hemoglobin estimation
IAESIJAI
 
PDF
gpt5_lecture_notes_comprehensive_20250812015547.pdf
Chinchu40
 
PDF
Diabetes mellitus diagnosis method based random forest with bat algorithm
IAESIJAI
 
PPTX
sap open course for s4hana steps from ECC to s4
sreeni2106invites
 
PDF
Architecting across the Boundaries of two Complex Domains - Healthcare & Tech...
Peter Tan
 
PDF
Machine learning based COVID-19 study performance prediction
IAESIJAI
 
PPTX
Big Data Technologies - Introduction.pptx
kuthubussaman1
 
Encapsulation_ Review paper, used for researhc scholars
gurumoop
 
MYSQL Presentation for SQL database connectivity
Swati270511
 
Electronic commerce courselecture one. Pdf
OmerMohamed64
 
20250228 LYD VKU AI Blended-Learning.pptx
DatVoNgoc
 
The AUB Centre for AI in Media Proposal.docx
GAONE9
 
Profit Center Accounting in SAP S/4HANA, S4F28 Col11
Libreria ERP
 
Spectral efficient network and resource selection model in 5G networks
IAESIJAI
 
TokAI - TikTok AI Agent : The First AI Application That Analyzes 10,000+ Vira...
SOFTTECHHUB
 
Chapter 3 Spatial Domain Image Processing.pdf
Getnet Tigabie Askale -(GM)
 
Build a system with the filesystem maintained by OSTree @ COSCUP 2025
Jian-Hong Pan
 
VMware vSphere Foundation How to Sell Presentation-Ver1.4-2-14-2024.pptx
blackmambaettijean
 
Mobile App Security Testing_ A Comprehensive Guide.pdf
flufftailshop
 
Cloud computing and distributed systems.
kkkkkhan
 
Review of recent advances in non-invasive hemoglobin estimation
IAESIJAI
 
gpt5_lecture_notes_comprehensive_20250812015547.pdf
Chinchu40
 
Diabetes mellitus diagnosis method based random forest with bat algorithm
IAESIJAI
 
sap open course for s4hana steps from ECC to s4
sreeni2106invites
 
Architecting across the Boundaries of two Complex Domains - Healthcare & Tech...
Peter Tan
 
Machine learning based COVID-19 study performance prediction
IAESIJAI
 
Big Data Technologies - Introduction.pptx
kuthubussaman1
 

NetGains Infrastructure Security

  • 1. NetGains Mail & Application Server Confidentiality & Security – Layered Approach Layered approach for securing NetGains Mail & Application Servers. It is a technical strategy, espousing adequate measures be put in place at different levels within the network infrastructure. It is also an organizational strategy, requiring participation from the clients, users, administrators & business owners. The layered-security approach centers on maintaining appropriate security measures and procedures at five different levels within the IT environment
  • 2. NetGains Mail & Application Server Confidentiality & Security – Layered Approach Security level Applicable security measures 1. Perimeter • Firewall • Network-based anti-virus 2. Network • Intrusion detection /prevention system • Vulnerability management system • Endpoint security compliance • Access control /user authentication 3. Host Host 4. Application • Host IDS & Host VA • Access control/user authentication • Input validation 5. Data • Encryption • Access control/user authentication IDS & Host VA Endpoint security compliance Anti-virus Access control/user authentication
  • 3. NetGains Mail & Application Server Confidentiality & Security – Layered Approach LEVEL 1: PERIMETER SECURITY    The perimeter is the first line of defense from outside, un-trusted networks. The perimeter acts as the first and last point of contact for security defenses protecting the network. It is the area where your network ends and the Internet begins. Sonic FireWALL PRO 3060      Real-Time Gateway Anti-Virus, Anti-Spyware and Intrusion Prevention. Powerful Content Filtering. Deep Packet Inspection Firewall Real-Time Blacklist Spam Filtering Policy-based NAT
  • 4. NetGains Mail & Application Server Confidentiality & Security – Layered Approach LEVEL 2: NETWORK SECURITY The network level of the layered-security model refers to internal LAN and WAN. • Intrusion detection systems (IDSs) and intrusion prevention systems (IPSs) • Vulnerability management - Vulnerability management systems perform two related functions: (1) they scan the network for vulnerabilities and (2) they manage the process of repairing the vulnerabilities found. • Endpoint security compliance (for VPN & RAS devices) • Access control/authentication (Network Level access) Answer: The Network level done administration is done by the ISP
  • 5. NetGains Mail & Application Server Confidentiality & Security – Layered Approach LEVEL 3: HOST SECURITY In the layered-security model, the host level pertains to the servers configurable parameters that, when set inappropriately, can create exploitable security holes. These parameters include registry settings, services (applications) operating on the device, or patches to the operating system or important applications.  Host-based intrusion detection systems (IDSs)  Host-based vulnerability assessment (VA)  Endpoint security compliance  Anti-virus  Access control/authentication Answer: * For this we use Trend Micro Interscan Messaging Security Suite which gives protection against Viruses, Spam and FTP traffic.
  • 6. NetGains Mail & Application Server Confidentiality & Security – Layered Approach LEVEL 4: APPLICATION SECURITY Application-level security is currently receiving a great deal of attention.      Poorly protected applications can provide easy access to confidential data and records. The hard truth is that most programmers don’t code with security in mind. Application shield - application-level firewall. Access control/authentication - only authorized users are able to access the application. Input validation - Input validation measures verify that application input traveling across your network is safe to process.
  • 7. NetGains Mail & Application Server Confidentiality & Security – Layered Approach LEVEL 5: DATA SECURITY Data-level security entails a blend of policy and encryption. Encrypting data where it resides and as it travels across your network is a recommended best practice because, if all other security measures fail, a strong encryption scheme protects your proprietary data. Encryption Important Customer data is stored in the SQL Server Database and is completely encrypted. Access control / authentication There is a role based access to data. Eg  A programmer has access only to Application files.  Important Customer data & Profile is stored in Database and only DBA can access it.  An Administrator of the system can only administer the data and has no access to database & applications.  RAID 10 for Hard-disk redundancy.  TAPE backup
  • 8. NetGains Mail & Application Server Confidentiality & Security – Layered Approach Thank You ! NetGains Technologies 708/709, Corporate Avenue, Sonawala Lane, Goregaon(E) Mumbai – 400 063. Sales: +91-22-6525 7000 / +91-22-6139 7000 Mobile : 9820089256 / 989200782