|
Secure information technology (IT) operations are
one of the keys to an organization’s ability
to function effectively. CSC can
support your IT security operations across
the spectrum of your needs - from facilities
to networks to workstations. Our support
efforts occur behind the scenes, so that
your organization can focus on achieving its
mission When developing an IT operations
plan and implementing its recommendations,
we consider the organization’s needs,
risk-tolerance level, flexibility, and
financial means just as carefully as when we
design and build
network security components. Our plans
include such preemptive strategies for
averting breaches as keeping the system
current, continuous monitoring and analysis
of operations, and a comprehensive security
awareness program.
Whether your security requirements
include the need for digital signatures,
encryption devices, secure electronic
transactions, multilevel secure data bases,
automated risk analysis, secure asynchronous
transfer mode (ATM), secure wireless local
area networks, spread spectrum, or
fault-tolerant systems, CSC has the
expertise to recommend, install, operate,
and maintain the right solution for your
organization. We can support you from your
facility or ours, depending on your needs.
For more information,
please contact
Kumait Jawdat,
Business Development.
What We Offer
|| Success Stories
Continuous Maintenance
CSC installs and maintains the
systems we implement, providing all patches
and updates needed to keep the system from
being breached. This means we must always be
aware of the latest potential threats as
well as the technologies used to thwart
those threats. Our security experts are
pro-active in handling up-to-the-minute
advisories from organizations such as the
Computer Emergency Response Team (CERT) and
the Forum of Incident Response and Security
Teams (FIRST).
Prevention, Monitoring, and Analysis
CSC utilizes the best security
analysis tools to prevent threats from
disrupting your organization. These tools
help us to cost-effectively monitor and
analyze your system in order to prevent
problems. We can study your traffic to
identify patterns and trends, audit the
accesses to your network and databases,
develop filters to emphasize problems or
allow only authorized events to occur, build
proxies to perform specialized checks and
balances, and identify potential fraud or
abuse. This analysis can tell us things like
how we need to modify your firewall
parameters, whether to add encryption
services, and what network controls need to
be instituted.
Mitigation
CSC’s threat-detection tools are
similar to those used to eliminate fraud or
abuse in wireline and cellular telephone
networks. If your system is breached, we
help you investigate the breach, document
it, and contact the appropriate authorities.
We then take whatever actions are necessary
to prevent it from happening again. Hacking
(computer break-ins), phreaking (phone
break-ins), fraud (access by unauthorized
user), abuse (unauthorized access by
authorized user), viruses (unauthorized
replicating software that attaches to other
software), worms (unauthorized, replicating
software that stands alone), Trojan horses
(masquerading software), and trapdoors
(deliberately planted software bugs) are
serious matters. They can only be stopped by
pro-active prevention and mitigation
programs like CSC’s.
Security Awareness
CSC can also develop and maintain
your organization’s security awareness
program. We use training, posters,
newsletters, the Internet, and other media
to educate your work force. We make sure
your staff understands each feature of your
security system, realizes why these features
are important, and knows what they can do to
ensure the integrity of your business from
external attacks.
For the Red Defense Switched Network
(DRSN) program, CSC has worked
extensively in all aspects of secure IT,
including communications security (COMSEC),
computer security (COMPUSEC), information
security (INFOSEC), physical security, and
personnel security. We planned, designed and
implemented this secure, worldwide voice
network and its interfaces. We now operate
the network.. In addition to handling the
normal operations, we monitor call detail
records and perform user/customer historical
trend analyses to protect against fraud and
abuse. We have also developed operational
response procedures for various potential
threats. The Department of Defense has been
pleased with our efforts to ensure the
integrity of their network and has added
additional task orders over the years.
As the integration contractor for the
Government Emergency Telecommunications
Service (GETS) program, we perform the
operations, administration, and maintenance
(OA&M) functions to support national
security and emergency preparedness.
Security administration is an especially
important part of CSC’s work. We
obtain security codes and keys, distribute
security information, maintain databases of
user personal identification numbers (PINs),
update security data encryption devices, and
protect sensitive and classified
information. We identify resources for
maintaining and updating the GETS
PIN/subscriber data base in accordance with
the GETS Security Plan, Functional
Requirements Specification, and task orders.
We also review security administration
procedures, then update the procedures to
handle new responsibilities and
recommendations. These OA&M functions ensure
that national, state, and local officials
can communicate during any natural or
man-made disaster so that the nation can
rebuild its network and services. |
