Cyber Security Solutions

Identity management and SSO are important cyber security solutions to provide more control over system access. Defining user access and ensuring that each individual has an identity is part of what an Identity Management tool can do for you. Here we offer one of the following solutions: Google Cloud Identity, Microsoft Azure AD, and Okta Identity Cloud.

Google Cloud Identity is a cloud-based identity management tool that gives you control over user permissions, security policies and app access. This tool supports single sign-on with SAML 2.0 and OpenID for increased convenience and security. Edit and update roles as they change or leave, and protect accounts with two-factor authentication.

Azure AD is Microsoft’s solution for identity and access management. Office 365 does come with a basic function of Azure AD. However, for additional security features like comprehensive identity management and single sign-on, an upgraded Azure subscription is required. Regardless, it continues to integrate beautifully with your Office 365 system. Azure AD includes a platform for developers, comprehensive identity protection and seamless SSO support.

Okta is a new service we are pleased to offer. As a third-party service, Okta integrates well with both G Suite, and Office 365 — so it’s an option regardless of where you stand on the Microsoft vs Google debate. As a fully cloud-based service, it’s available wherever you are, and prides itself on being an independent and neutral platform alternative to the usual suspects. Chat with our team about Okta today.

When it comes to mobile device management and mobile application management, we can offer a few solutions to suit your business. If your business is running on Office 365 then you have a couple of options within this system. Office 365 offers a mobile device management function for your more basic MDM needs that comes with your business subscription. The built-in MDM for Office 365 will cover your essential features like implementing security settings and restrictions on enrolled devices, managing both iPhone and Android devices, and controlling device access to company data.

Microsoft also offers an Office 365 add-on designed more specifically for mobile device management. Microsoft Intune is a cloud-based MDM tool that provides more in-depth features and control for managing devices. It’s included in the Microsoft Enterprise Mobility + Security package which we can offer as well. Intune allows you to deploy an internal business app to all employees, roll out software and updates remotely, as well as more in-depth and high-end security functions.

If your business is operating G Suite, then no fear, G Suite also includes a mobile device management function. This feature is akin to the built-in MDM for Office 365. Employees can use their personal devices for work while G Suite Device Management keeps company data safe. Once devices are enrolled, all updates and security configurations will be pushed to devices instantly. Have a chat with us about which option works better for your business.

Previously when protecting your computer or system, you could rely on a basic anti-virus tool that would scan any executable files you tried to open. In order to keep up with growing cyber attacks and methods, now we have more sophisticated solutions that offer a more comprehensive endpoint protection and firewall protection.

Bitdefender is a perfect solution for small and large-scale needs. They offer small office solutions, home solutions, mobile and business. GravityZone is Bitdefender’s Enterprise security solution that provides endpoint security, virtualised environments, security for mobile devices, as well as encryption. With a centralised control centre, this package is an ideal solution for managing system security across the board.

Sophos is another high-end endpoint security solution that provides a comprehensive approach to protection. Their product Intercept X combines traditional security and next-gen methods to give you the most robust security around. Intercept X boasts of AI-driven anti-malware that learns new threats as they develop and anticipates ransomware based on behavioural analysis. Discuss with Stanfield IT which option would be best for your business.

One of the cyber security solutions we also offer here at Stanfield IT is one you might not even consider. We’ll help you develop and implement cyber security policies and procedures for cyber risk management within your business. Having a defined cyber security policy in place will give your employees understanding and boundaries for how to manage data, how to react to incidents and online protocols.

We can help you implement industry guidelines — for example, if you’re a healthcare practice and need to implement the RACGP cyber security guidelines. Are you compliant with the recent Notifiable Data Breaches Scheme and Privacy Act? You need to ensure that you have the correct policies in place and follow procedures according to these requirements.

Business Continuity Plans are an essential procedural document that should be in every business. This document should detail a practical plan and steps to take in the event of an incident or crisis. A good plan will help you to prevent and reduce risk, prepare for unavoidable risks and how to recover from incidents. We’ll help you develop policies for cyber security incidents to be included within your business continuity plan.

Once you have completed all your preventative and risk-management cyber security solutions — you’ll need to perform vulnerability scanning. A good vulnerability scanner will evaluate your whole system and identify any outstanding vulnerabilities. At Stanfield IT, we advocate for Tenable’s Nessus vulnerability scanner.

Nessus is a comprehensive vulnerability assessment tool that can identify anything from software flaws, to missing patches, malware and misconfigurations within your operating system, devices or applications. Nessus is constantly updating with the latest threats so your system is protected from brand new attacks. Nessus comes with some built-in templates depending on what your focus is — from configuration audits to patch management. You can create custom reports including specific vulnerability types, vulnerabilities by host or plugin, and customise by team or client which you can email with every scan.

The latest Nessus release (Nessus 8) also allows you to view live results, which performs an offline scan with every plugin update and can identify vulnerabilities based on your scan history. From here you can run another scan to validate the presence of the vulnerability for higher accuracy and precision. Nessus 8 also allows you to view similar issues or categories in a grouped thread so you can easily prioritise what needs immediate fixing versus issues that you can ‘snooze’ for a specified period.