hackers
#6
Scooby Regular
Most of the large Telcos do it (badly in most cases) and some independents as well. Checkpoint on Nokia is the most common solution but there are others such as PIX, Netscreen, SonicWALL, Raptor...etc, in fact all of the commercially available firewalls have a managed service provider....
Be careful about what you define as a managed service and what the Vendor describes as a managed service...not likely to be the same thing.....
One of the biggest MSPs for Checkpoint in the UK is Vistorm who I have had dealings with when working for end user organisations.
Jeff
Be careful about what you define as a managed service and what the Vendor describes as a managed service...not likely to be the same thing.....
One of the biggest MSPs for Checkpoint in the UK is Vistorm who I have had dealings with when working for end user organisations.
Jeff
Trending Topics
#8
Scooby Regular
Me.....err, oh yes I work in IT Security and I would mention that we do Managed Security as well but that would be commercial advertising now wouldn't it
Cough.....don't look now but here comes a moderator.....slinks away.....
Jeff
Cough.....don't look now but here comes a moderator.....slinks away.....
Jeff
#13
Scooby Regular
Join Date: May 2001
Location: Scotland
Posts: 4,580
Likes: 0
Received 0 Likes
on
0 Posts
I've dealt with several of the top named security firms, and I can honestly say I'm begining to think they are all as bad as each other.
The salesmen are always very good, putting on a good show, however the installation and aftersales support can be terrible
Do some serious homework if you're thinking about getting a 3rd party in for your security, also shop around and weigh up the competition. Most have loads of margin in the cost of the kit so haggle
The salesmen are always very good, putting on a good show, however the installation and aftersales support can be terrible
Do some serious homework if you're thinking about getting a 3rd party in for your security, also shop around and weigh up the competition. Most have loads of margin in the cost of the kit so haggle
#14
Do it yourself, then you know what you are getting. The definition of a managed service can be very different from provider to provider. Normally this means that they monitor the firewall. any additional work is charged for.
The Firewalls that come in one box are about the best as you can get them up and running very fast. Also when you phone up support they can not blame the OS or the PC manufacturer, everything is covered.
Si
The Firewalls that come in one box are about the best as you can get them up and running very fast. Also when you phone up support they can not blame the OS or the PC manufacturer, everything is covered.
Si
#16
Scooby Regular
I think for the most part the MSP companies do deliver what they say in the contract but that the Clients don't neccesarily ask for the right things in the contract.....I think it all comes back to what is the definition of a managed Security Service.
You might think that the Vendor is there to secure your enviroment and that any changes you ask for in the Firewall are only done once a security review of the change is completed. However the Vendor will probable not even look at the Firewall logs (depending on the service you've purchased) and you will probable have to inform them that there is a problem with the device and they will make any change to the Firewall rulebase you ask for regardless of if it is sensible/secure or not.
There are a few good MSPs around but you will pay though the nose for the management of the Firewall. The good ones tend to be security companies who's core business is managed security services (such as ISS, Proseq for IDS systems).
Jeff
You might think that the Vendor is there to secure your enviroment and that any changes you ask for in the Firewall are only done once a security review of the change is completed. However the Vendor will probable not even look at the Firewall logs (depending on the service you've purchased) and you will probable have to inform them that there is a problem with the device and they will make any change to the Firewall rulebase you ask for regardless of if it is sensible/secure or not.
There are a few good MSPs around but you will pay though the nose for the management of the Firewall. The good ones tend to be security companies who's core business is managed security services (such as ISS, Proseq for IDS systems).
Jeff
#17
Scooby Regular
Join Date: Nov 2001
Location: Leeds - It was 562.4bhp@28psi on Optimax, How much closer to 600 with race fuel and a bigger turbo?
Posts: 15,239
Likes: 0
Received 1 Like
on
1 Post
To be honest with these MSP... do you really want any changes making to your firewall, without being aware of them... I know for a fact if anybody killed one of our 4 /5 firewalls... they would be sacked... no questions asked... You are the weakest link... goodbye.
(We rely (sp) on our links and our hundreds of routers all sit outside some of the firewalls)
David
(We rely (sp) on our links and our hundreds of routers all sit outside some of the firewalls)
David
#18
Scooby Regular
I'm not suggesting that there should be unilateral changes to a Firewall Rulebase but rather that you've contracted a company to look after your Security and therefore they should be in a position to 'sanity check' any requested changes not simply do them if the customer asks.
Jeff
Jeff
Thread
Thread Starter
Forum
Replies
Last Post