Enterprises are moving their business processes towards digitization, mobility, big data analytics, web collaboration and cloud services. Most of them usually do not think of enterprise IT security strategy as a mandatory factor and lack adequate security experts on staff. This, however, makes for a poor strategy that leads nowhere. Businesses should recognize enterprise IT security as their prio

CPQ provides a full range of IT relevant security services. Our IT Security Services offer businesses a deep, comprehensive overview of their vulnerability landscape in order to raise effectiveness in preventing advanced attacks and mitigate business risks.

Managed IT Security Services

CPQ offers effective, high quality solutions addressed to businesses that seek strategic partners to outsource their IT security management. Monitoring and analytics of security incidents, Penetration Tests, Vulnerability Scans are just some of our products. CPQ aligns those services directly with business and operational goals and assists clients in complying with their IT governance processes, manage corporate risk and achieve compliance with state laws, legal frameworks and industry standards.

Managed security services - scope of services

• Security Operations Center – Stay in control 24/7;
• Security Monitoring and Security Information and Event Management – Effectively monitor the security of IT environments to identify, analyze and respond to potential security threats in time;
• Vulnerability Tracking and Management – Verify the security status of your IT environment with routine vulnerability scans;
• Patch Management – Compile patch- and vulnerability-related information from various sources, including vendor sites, security newsletters and vulnerability databases;
• Compliance Management – Improve compliance with our assistance and identify and deploy best security practices and regulatory requirements;
• IT risk management – Pro-actively manage open threats by controls, corrective actions and other measures to mitigate risks;
• Business Continuity Management – Determine the maturity of your controls for Information Security & Business Continuity.

IT Security Auditing & Compliance

CPQ ICT boasts extensive experience assessing policies, processes and technical deployment standards against key local and international legal and regulatory requirements. IT Security Auditing & Compliance services are tailored to the client’s legal compliance requirements relevant to their industry.

Our portfolio of security services successfully helps businesses identify all types of system vulnerability to reduce the risk of data loss and unauthorized access. Since regular data security checks can spot potential hazards and remove them in time, they should make a routine process for effective protection of IT systems. CPQ ICT Security & Risk Department delivers a vast range of IT Security Audit services to meet market needs, customer expectations and deliver great intelligence.

Scope of services:

• Review of the security status of the IT environment by means of routine vulnerability scans and mitigation action planning;
• Data flow across network segments (Internet, DMZ, WAN, LAN);
• Vulnerability Scans;
• Penetration Testing;
• Compliance Auditing carried out in line with standards such as ISAE3402, ITIL, PCI-DSS and personal data protection regulations;
• IT Security Audit:

       - Infrastructure, System;
       - Process, Effectiveness, Preparedness;
       - Application, Databases.

IT Security Integration and Support

The rising use of ICT technologies across business is poised to make IT security systems much more reliable. As everyday business operations can be disrupted should the business fail to respond to a given threat in time, ICTs make one of key factors in the effective management of information processes. CPQ’s IT Risk & Security Department offers full range of Integration and Support services from network security solutions to Security Information and Event Management (SIEM) services. With a team of highly skilled Network and Security Engineers and years of business security experience, we pride ourselves on delivering solutions and services tailored to our clients’ expectations. We start from analyzing customers’ needs and then plan and deploy security solutions to meet all the specific requirements. Make sure not only your enterprise network security is at the highest level.

Scope of services

• Firewalls – Deployment, configuration and support for 3rd Parties Firewall Solutions;
• Intrusion Detection/Prevention Systems (IDS/IPS);
• Data Leakage/Loss Prevention;
• Content Security;
• Unified Threat Management (UTM);
• Security Information and Event Management (SIEM);
• Securing Networks including Secure Switching and Routing.