| Phone: 1-888-474-9660 | ||
ENTERPRISE SECURITY SOLUTIONS
Business Integra Inc. provides Information Technology (IT) Security Services and Business Solutions for IT systems in both the Federal and private sector; those are potentially vulnerable to unauthorized access, destruction, disclosure, modification of data, and/or denial of service. Business Integra considers the threat can be intentional with the method targeted at the intentional exploitation of vulnerability, or the result of a situation and method that may accidentally trigger vulnerability. We provide business solution services to mitigate potential threats and implement security controls that are required to satisfy the specified security requirements and protect the confidentiality, integrity, and availability of our customers IT systems.
Business Integra Enterprise Security Approach / Roadmap
Our security solution is business process driven that provides security solutions in compliance with our customers IT Security Standards, Policies and Procedures. The figure 1 below highlights our approach and roadmap for iterating through a number of security artifacts and evolving the Enterprise Life Cycle (ELC) Management over time:
Business Integra Enterprise Security Services
Business Integra Enterprise Security Services focus is in following 3 key areas from the prospective of what needs to be protected.
Identity Management
Identity management deals with the creation, communication, recognition, and usage of identity in the enterprise. Identity management includes provisioning services, directories, multi-factor authentication, federation, and so on. All access control is predicated on identity, a central concern to security architecture, the quality of the system’s authentication and authorization cannot be stronger than the identity management process.
Identity management architecture is important to identify points of leverage across projects, because identity management components are often not able to support a business case individually. Strategically the enterprise should align investment, architecture, and implementation in the identity space to increase the quality, reusability, and strength of identity. The net benefit is to improve the authentication, authorization, and auditing services for the system as a whole. The utility of the identity management architecture comes through mapping the subject request’s claims (or assertions) to policy enforcement decision workflow; and the object’s protection model, often in the form of group and/or role membership.
Threat Management
Threat management deals with the threats to systems such as virus, Trojans, worms, malicious hackers, and intentional and unintentional system misuse by insiders or outsiders. Threats differ from vulnerabilities in that threats are the actors that breach or attempt to breach security policies and mechanisms. The security gaps that are exploited by threats are called vulnerabilities.
Threat Management tools and processes include: Security Monitoring, Web Application Firewall, Security Incident Management Processes, Security Event Management System, Incident Response Planning Processes, cryptography, and Forensic Analysis Process and Tools. The threat environment is inherently unpredictable and in large part out of control of the enterprise. Developers can assist the security team in understanding attack vectors and signatures to monitor for, but it is impossible to predict all threats, meaning that threat management has a large detection and response component. Monitoring systems and audit services at various levels in the system can identify threats that circumvent expected paths and controls.
Vulnerability Management
Vulnerability management is the set of processes and technologies for discovering, reporting, and mitigating known vulnerabilities. The vulnerabilities may reside at any system layer – database, operating system, servers, and so on; specialized tools probe for known vulnerabilities. It is important to differentiate threat management and vulnerability management. The threat environment contains many unknown mysteries around attacker techniques and goals, attackers will identify currently unknown vulnerabilities (zero day attacks), but there are many known vulnerabilities that the security team can act on, while the threat landscape is inherently less predictable meaning security is reactive to threats and can be generally proactive towards dealing with known vulnerabilities. This has direct implications on staffing, prioritization, and investing in these areas, because vulnerability management has a more predictable lifecycle based on the known quantity of many vulnerabilities.
Business Integra Enterprise Security Architecture Process
Business Integra Enterprise Security Architecture Process is an iterative process that unifies the evolving business, technical, and security domains. The risk management process drives the security architecture and implementation of the overall enterprise security blueprint.
Business Integra Enterprise Security Architecture Process is an iterative process that unifies the evolving business, technical, and security domains. The risk management process drives the security architecture and implementation of the overall enterprise security blueprint.
The four main phases in the security architecture process as highlighted in figure 2 are:
Business Integra Enterprise Security Implementation Layers
Business Integra Enterprise Security Solution encompasses implementation of security across following layers to ensure the confidentiality, integrity, and availability of information:
Physical Security
Physical security is the operations for security mechanisms for the physical working locations, data and application hosting centers. Physical security mechanisms, such as physical access authorizations, physical access control, access control for transmission medium, access control for display medium, monitoring physical access, visitor control and access Logs.
Network Security
Network security is the design and operations for security mechanisms for the network. Network security mechanisms, such as network firewalls and network intrusion detection devices (NIDS), are generally a convenient and scalable point to apply security controls and are an important locale for defining chokepoints and zones. Zones define logical and/or physical boundaries around a group of systems, for example the DMZ pattern in web applications. Chokepoints define places to cross boundaries into and out of zones, where special security considerations apply.
Host & Operating System Security
Host security is concerned with access control on the servers and workstations. Host Intrusion Detection Systems (HIDS) identify host anomalies and security events. Host Integrity Monitoring checks and protects the integrity of the critical files and programs on the host. Baseline Configuration Scanners provide assurance that the systems in use in the field meet the policy and standards at a granular level. These scanners may be automated to support highly distributed and large scale environments. Using the zones and chokepoints defined in the network security architecture, the security architecture defines a baseline configuration for each locale.
Application Security
Application security deals with two main concerns:
Data Security
Data security deals with securing access to data and its use; this is a primary concern for the security architecture and works in concert with other domains. Vulnerability management tools conduct specialized scans against database hosts. The ELC defines secure patterns for database integration based on data classification defined in the policy. Database intrusion detection and monitoring provides ongoing intelligence as to the threats against the database. The value in performing detection and monitoring at this layer is that attackers may not traverse the expected path to get to the asset that the security system is trying to protect: data. Database, XML documents, transient messages, and other resources are protected by data security mechanisms. Security frequently collaborates with database administrators in this area to drive secure database configuration and operations.
Business Integra and IT Security Standards (ITSS)
Business Integra provides Enterprise Security Solution in compliance with IT Security Standards as listed in Table 1. Business Integra implements the various mechanisms and IT Security (ITS) Controls required to protect IT information from vulnerability across physical, network, operating system, application and database communication layers.
Business Integra Inc. provides Information Technology (IT) Security Services and Business Solutions for IT systems in both the Federal and private sector; those are potentially vulnerable to unauthorized access, destruction, disclosure, modification of data, and/or denial of service. Business Integra considers the threat can be intentional with the method targeted at the intentional exploitation of vulnerability, or the result of a situation and method that may accidentally trigger vulnerability. We provide business solution services to mitigate potential threats and implement security controls that are required to satisfy the specified security requirements and protect the confidentiality, integrity, and availability of our customers IT systems.
Business Integra Enterprise Security Approach / Roadmap
Our security solution is business process driven that provides security solutions in compliance with our customers IT Security Standards, Policies and Procedures. The figure 1 below highlights our approach and roadmap for iterating through a number of security artifacts and evolving the Enterprise Life Cycle (ELC) Management over time:
What need to be protected?
How it can be protected? And
Who is responsible to protect it?
Business Integra Enterprise Security Services
Business Integra Enterprise Security Services focus is in following 3 key areas from the prospective of what needs to be protected.
Identity Management
Threat Management
Vulnerability Management
Identity Management
Identity management deals with the creation, communication, recognition, and usage of identity in the enterprise. Identity management includes provisioning services, directories, multi-factor authentication, federation, and so on. All access control is predicated on identity, a central concern to security architecture, the quality of the system’s authentication and authorization cannot be stronger than the identity management process.
Identity management architecture is important to identify points of leverage across projects, because identity management components are often not able to support a business case individually. Strategically the enterprise should align investment, architecture, and implementation in the identity space to increase the quality, reusability, and strength of identity. The net benefit is to improve the authentication, authorization, and auditing services for the system as a whole. The utility of the identity management architecture comes through mapping the subject request’s claims (or assertions) to policy enforcement decision workflow; and the object’s protection model, often in the form of group and/or role membership.
Threat Management
Threat management deals with the threats to systems such as virus, Trojans, worms, malicious hackers, and intentional and unintentional system misuse by insiders or outsiders. Threats differ from vulnerabilities in that threats are the actors that breach or attempt to breach security policies and mechanisms. The security gaps that are exploited by threats are called vulnerabilities.
Threat Management tools and processes include: Security Monitoring, Web Application Firewall, Security Incident Management Processes, Security Event Management System, Incident Response Planning Processes, cryptography, and Forensic Analysis Process and Tools. The threat environment is inherently unpredictable and in large part out of control of the enterprise. Developers can assist the security team in understanding attack vectors and signatures to monitor for, but it is impossible to predict all threats, meaning that threat management has a large detection and response component. Monitoring systems and audit services at various levels in the system can identify threats that circumvent expected paths and controls.
Vulnerability Management
Vulnerability management is the set of processes and technologies for discovering, reporting, and mitigating known vulnerabilities. The vulnerabilities may reside at any system layer – database, operating system, servers, and so on; specialized tools probe for known vulnerabilities. It is important to differentiate threat management and vulnerability management. The threat environment contains many unknown mysteries around attacker techniques and goals, attackers will identify currently unknown vulnerabilities (zero day attacks), but there are many known vulnerabilities that the security team can act on, while the threat landscape is inherently less predictable meaning security is reactive to threats and can be generally proactive towards dealing with known vulnerabilities. This has direct implications on staffing, prioritization, and investing in these areas, because vulnerability management has a more predictable lifecycle based on the known quantity of many vulnerabilities.
Business Integra Enterprise Security Architecture Process
Business Integra Enterprise Security Architecture Process is an iterative process that unifies the evolving business, technical, and security domains. The risk management process drives the security architecture and implementation of the overall enterprise security blueprint.
Business Integra Enterprise Security Architecture Process is an iterative process that unifies the evolving business, technical, and security domains. The risk management process drives the security architecture and implementation of the overall enterprise security blueprint.
The four main phases in the security architecture process as highlighted in figure 2 are:
Architecture Risk Analysis
Security Architecture & Design
Implementation and
Operation & Monitoring
Business Integra Enterprise Security Implementation Layers
Business Integra Enterprise Security Solution encompasses implementation of security across following layers to ensure the confidentiality, integrity, and availability of information:
Physical Security
Network Security
Host (Hardware) Operating System Security
Application Security and
Data Security
Physical Security
Physical security is the operations for security mechanisms for the physical working locations, data and application hosting centers. Physical security mechanisms, such as physical access authorizations, physical access control, access control for transmission medium, access control for display medium, monitoring physical access, visitor control and access Logs.
Network Security
Network security is the design and operations for security mechanisms for the network. Network security mechanisms, such as network firewalls and network intrusion detection devices (NIDS), are generally a convenient and scalable point to apply security controls and are an important locale for defining chokepoints and zones. Zones define logical and/or physical boundaries around a group of systems, for example the DMZ pattern in web applications. Chokepoints define places to cross boundaries into and out of zones, where special security considerations apply.
Host & Operating System Security
Host security is concerned with access control on the servers and workstations. Host Intrusion Detection Systems (HIDS) identify host anomalies and security events. Host Integrity Monitoring checks and protects the integrity of the critical files and programs on the host. Baseline Configuration Scanners provide assurance that the systems in use in the field meet the policy and standards at a granular level. These scanners may be automated to support highly distributed and large scale environments. Using the zones and chokepoints defined in the network security architecture, the security architecture defines a baseline configuration for each locale.
Application Security
Application security deals with two main concerns:
Protecting the code and services running on the system, who is connecting to them, and what is output from the programs through a combination of secure coding practices, static analysis, threat modeling, participation in the ELC, application scanning, and fussing.
Delivering reusable application security services such as reusable authentication, authorization, and auditing services enabling developers to build security into their system. Security frequently collaborates with software architects and developers in this area to build security into the system.
Data Security
Data security deals with securing access to data and its use; this is a primary concern for the security architecture and works in concert with other domains. Vulnerability management tools conduct specialized scans against database hosts. The ELC defines secure patterns for database integration based on data classification defined in the policy. Database intrusion detection and monitoring provides ongoing intelligence as to the threats against the database. The value in performing detection and monitoring at this layer is that attackers may not traverse the expected path to get to the asset that the security system is trying to protect: data. Database, XML documents, transient messages, and other resources are protected by data security mechanisms. Security frequently collaborates with database administrators in this area to drive secure database configuration and operations.
Business Integra and IT Security Standards (ITSS)
Business Integra provides Enterprise Security Solution in compliance with IT Security Standards as listed in Table 1. Business Integra implements the various mechanisms and IT Security (ITS) Controls required to protect IT information from vulnerability across physical, network, operating system, application and database communication layers.
| ITS STANDARD IDENTIFIER | ITS STANDARD FAMILY | ITS CONTROL |
| RA | Risk Assessment | Management |
| PL | Planning | Management |
| SA | System and Services Acquisition | Management |
| CA | Certification, Accreditation, and Security Assessments | Management |
| PS | Personnel Security | Operational |
| PE | Physical and Environmental Protection | Operational |
| CP | Contingency Planning | Operational |
| CM | Configuration Management | Operational |
| MA | Maintenance | Operational |
| SI | System and Information Integrity | Operational |
| MP | Media Protection | Operational |
| IR | Incident Response | Operational |
| AT | Awareness and Training | Operational |
| IA | Identification and Authentication | Technical |
| AC | Access Control | Technical |
| AU | Audit Accountability | Technical |
| SC | Systems and Communication Protection | Technical |
© Business Integra Inc. All Rights Reserved