Protective Services

Prevention, detection, and containment

InGuardians Protective Services Team delivers expert guidance to your IT employees, stakeholders and management in order to better defend their assets against targeted threats.

InGuardians Protective Services Team delivers expert guidance to your IT employees, stakeholders, and management in order to better defend their assets against targeted threats.  In addition to Proactive Hardening and Security Architecture Services, InGuardians Protective Services also include  Threat Hunting and Incident Response.

All of our Protective Services begin with building a threat profile of the client.  In this process, our entire team identifies the threats and actors that pose the most risk to your organization.  We can then use the threat model to determine the most effective security controls to deter the attacks, in addition to implementing audit measures to determine when breaches occur.

The services below are a subset of what InGuardians can do for your organization.  

Security Architecture Review

InGuardians analyzes your security architecture and provides recommendations on controls and audit measures.

InGuardians’ Security Architecture Reviews are broad-ranging and provide an in-depth analysis of your information security controls and audit measures. Our guidance, presentation, and report will help your team understand the current strengths and weaknesses of your security architecture, and provide a roadmap to construct stronger defenses and become more resilient to attack.

InGuardians assesses existing policies & configurations, interviews key stakeholders, and measures control and audit functions to identify gaps, deficiencies, and build a plan to remediate them.

Purple Team Training
Gamified attack and defense training. We are the attackers, you are the defenders.

InGuardians has developed a unique Red vs Blue team training program that can be customized to your organization.  We start by assessing and bolstering the organization’s Incident Response capability.  Then, using custom training modules we conduct live-fire exercises testing your team’s ability to detect, deter, and respond.

Security Program Assessment
InGuardians analyzes your security program and provides recommendations on protective controls and audit measures.

The threat landscape facing organizations today requires a defensible architecture complete with preventative controls and detailed monitoring capabilities.  InGuardians Security Program Reviews helps your team defend your enclave, deter threats, and dominate your domain.

These reviews provide detailed analysis of your current security program and provides your organization with a roadmap to achieving your security goals.

System Hardening Assessment
Locking down systems with custom configuration changes and tools

Proactive security measures disrupt or contain a bad actor’s attack.  InGuardians’ operating system hardening and assessment service uses configuration steps and open source tools to block the initial compromise or contain its thread.  Determine your gaps from standards and leapfrog into best practice. This starts at the operating system and application-level configuration settings, moves on to custom SELinux or AppArmor profiles and continues with local system instrumentation.  Past customers of this service have run the gamut from DevOps to security appliance vendors to universities.

Request InGuardians hardening services on production systems or on systems you have in development.

Custom Training
You know Kung fu?  Show me. – Morpheus

For over eighteen years, InGuardians trainers have set the standard for excellence in the information security industry.  We have helped author and deliver some of the most popular courses at The SANS Institute, Black Hat, Cansec, Interop, RSA, IDA, Distributech, and on site for private customers.  Contact us to get started on creating a customized training experience for your team.

Configuration Review
The experience level of our team allows us to engage in comparative evaluations of various security products. InGuardians’ Protective Services Team is particularly experienced in this area of computer security.

Our team has developed several security assessment tools, including two of the most popular within industry and government: the original CIS Linux/UNIX scoring tool and Bastille Linux.  InGuardians’ Protective Services Team will perform a hardening assessment and recommend industry best approaches to address discovered vulnerabilities with an accompanying action plan that considers not only the technology but, more importantly, the business objectives of each client.

Policy Development and Review
InGuardians’ Protective Security team will review your corporate information security policies and those with direct relevance to information security. Our team will determine whether an adequate corporate framework exists for an information security program, in light of regulatory requirements including Sarbanes-Oxley, HIPAA, GLBA, NERC, FERC, NY DFS 500 and others.  Where needed, InGuardians will work with you to develop policies and processes that remediate any discovered gaps.
Threat Hunting
Actively searching for malicious threats or actors on information systems.

InGuardians HuntTeam operators use both defensive and offensive teams to identify compromised systems, malicious code, and other indicators of compromise.

Incident Response
InGuardians helps you contain the breach, eradicate the attackers, and make a full recovery.

It is no longer a question of if, but when you will be breached.  Most organizations are ill-equipped to handle their own breach investigations.  During the past eighteen years, InGuardians has helped over one hundred Fortune 1000 companies recover from serious compromises.  The process of containing the breach and eradicating the attackers is often a daunting one.  InGuardians Incident Response Team has the experience to help your organization make a full recovery.

Incident Response Training
Are you ready for the next breach?  InGuardians IR Training will make it so!

Our Incident Response Training has helped many Fortune 500 companies and one country develop their incident response practice. Starting with an evaluation of the organization’s current state of incident preparedness, our team creates a roadmap and training path. From policy and procedure development to live fire exercises, InGuardians can help your team prepare for tomorrow’s threats today.

Press and Speaking

InGuardians subject matter experts are available for press and public speaking opportunities.  We write, we teach, we do.