Data (Re)covery Data Protection Intrusion Analysis Incident Handling Forensics
Data protection is an overall approach to sustain availability and integrity for your data. In general terms we define this approach with several lines of defense. Typically, however, we find most people and businesses only concern themselves with installing defense controls for their data, but forget the most important lines of defense; the preparation and identification of what resources and systems are at risk, how to (re)cover them if loss has occurred, and the backup strategies for those resources. Even with defense controls in place, we see most people "set them, and forget them" and might not even know what they do or how to maintain them. The overarching goal for (re)covery plans is ultimately to regain access to the data and resources required to resume operations after a disaster. (Re)surge can help you accomplish this goal!
How we provide data (re)covery plans
By deploying standardized protection and backup models, rotational schemes, AND testing procedures we can provide a comprehensive data protection plan; we help develop full-disk and mobile device data encryption solutions, backup schedules, and validation and (re)covery testing programs that greatly improving your reliability and consistency for data protection.
Our approach provides a fully scalable solution for all your operating systems, file formats, and devices; we deliver reliable encryption, backup and (re)creation plans for mail, databases, file servers, RAID, flash and ROM storage, memory cards – pretty much any media that can store data! Additionally, our testing and validation procedures ensure we can (re)create the metadata, file-attributes, linking, partitions, file system mapping, boot sectors, etc for your data.
What defense controls do we provide?
Security Plans and Configuration: We take an innovative approach to understanding your systems, networks, and data and how they all interact, communicate, and authenticate. We do not say your resources are secure by simply installing security applications, and leaving you with the responsibility of understanding and maintaining them. Instead, (re)surge will provide an on-site security plan and assessment; documenting, validating, and inspecting all of your resources to determine the best security controls to deploy. We provide detailed configuration, implementation, and reviews for firewalls, patch-management, auditing controls, security logging, network segmentation, web application security, and antivirus and spyware applications. We then take our process one step further; we provide you the education and training necessary to understand and use the security controls!
Wireless Security: We know the ability to enter a network while mobile has great benefits; however wireless networking has many security issues. There are a great number of security risks associated with the currently implemented wireless protocols and encryption methods, and in the carelessness that exists at the user level. Cracking these networks has become much easier and more accessible with free and easy-to-use tools to discover your network keys, intercept your traffic, or even impersonate your systems or wireless access points; can you believe within minutes your network, passwords, data, and identity could be stolen? We like to always provide an analogy; why crash through the front door when I can listen through an open window and hear where you hid the “extra” key? By having your window open I just happened to “hear” what you were saying - wireless communications often follow this scenario. We at (re)surge will design and educate users for counteracting these risks, and identifying the types of attacks currently used. Network security configurations: (Re)surge is proud to have extensive knowledge of network, system, and data auditing. This brings together everything we’ve talked about so far; from inspecting and validating the system environment, to analyzing and dissecting the network traffic and design. We define auditing as a detailed, low-level approach to identifying and authenticating all informational resources, whether it’s a file on a PC, a user account, a running process, or a data packet entering your network. We have been technical leads and security analysts covering a large area of devices and technologies and have written and incorporated several security accreditation packages for businesses and the government. Let us help you base-line your information, identify your current state for systems and servers, analyze your network topology, and provide a layered security environment.
Parental and Application Controls: Parental and application controls are the options and controls for computer and video game ratings, software, or Internet access that allows a trusted user to monitor or limit what a child can see, install, or access. These controls may allow for the blocking or censorship of content, or limiting access times and usage to specific resources and software. Find out how we can provide a more thorough approach to parental and application controls, instead of the easily bypassed software controls in use today.
System Restoration (Re)covery: For home and small business users we provide an entire system restore (re)covery package. This includes our detailed system and network security audit and baseline for the state of your resources and data, combined with a complete hardening of your operating systems and ensuring secure communication between your devices. We then provide a complete clone of your devices and a copy of that data is safely stored in our safe. If disaster ever strikes, you’ll know you have a validated and trusted copy of your entire operating environment, ready to be popped into a DVD drive and (re)stored in minimal time. Unlike most system restoration disks that only restore a limited set of information, your (re)surge’d (re)covery DVDs will be your entire resource; everything will be there including all of your executables and drivers, your personal documents and settings, your registry, graphics, emails, songs, customer databases, product listings, Internet bookmarks, financial information, games, applications, and so on and so on.
Malware and Spyware analysis: We love to hear when there are claims that something can completely (re)move all malicious programs, Trojans, viruses, or spyware from a system – how are they identifying, containing, and (re)moving these malicious applications? If tools such as anti-virus or spyware-(re)moval programs are used, they are only as knowledgeable about malware as their signature database; they have limited capabilities to discover what’s unknown to them. Don’t just run a tool and trust it knows what is wrong with your system, consider utilizing an experienced security engineer. (Re)surge actually (re)verse-engineers and interacts with malicious apps to determine, decisively, how it runs and affects your data. In fact, we have developed many signatures and analysis techniques for the two leading anti-virus companies!
Data Protection
[dat-uh pruh-tek-shuhn]
We at (re)surge provide secure, encrypted, and off-site data storage to hard disks, optical discs, solid state storage such as flash drives, smart-cards, memory-sticks, etc. We maintain a fire-proof, water-resistant safe for proper data storage. Learn more about how to protect your data through encryption, in case of theft.
We implement user setting migration management, software distribution and inventory, system cloning, and centralized system duplication deployment; providing businesses the capability to quickly deploy and (re)store operational capabilities.
We educate users on the risks and vulnerabilities deployed in mass solutions to their existing wi-fi networks. Serious flaws exist in the protocols and methods of these networks like EAP, WEP, shared key authentication, and messaging modifications to name a few.Configure hardware and network address filtering for wireless access, and perform the implementation, placement, and integration with newer, current encryption schemes.Utilize in-line authentication techniques to handle requests and communications between your systems and the Internet. With content inspection of data transfers we can implement rule and behavioral definitions for data; effectively blocking, limiting, or denying communications. We will also identify several common ways these controls can be bypassed, and how to design and configure a controlled, and authenticated network.
Coupled with the above, we can help incorporate and design an effective solution for parental and application controls; helping you to monitor and limit what can be seen, accessed, or installed on your systems.
We conduct manual malware and malicious mobile code identification, interaction, dissection and analysis. We (re)verse-engineer malicious apps, perform dynamic interaction, and monitor the entire operating system environment from memory execution and process mapping, to application injection, hooking, hiding, and (re)-direction (all major techniques used by malware).
- We provide on-site security plans and guides for home or business users to include; antivirus, spyware, firewalls, patching, wireless, auditing, logging, network segmentation, browser security, web application security and vulnerability assessments.
We incorporate, design, (re)-design, monitor, and audit network configurations and topologies, perimeter protection, host and network authentication devices, VPNs, VLANs, firewalls, proxies, NATs, IDS and IPS systems.
We are licensed and experienced in auditing security controls, user and process controls, file integrity, and hardening techniques for Unix, Linux, Solaris, BSD, Cisco, and Windows.
We provide an entire system restore package that includes our detailed security auditing and hardening for your operating systems, peripherals, and network resources. After we get your resources into a secured and trusted state we do a bit-for-bit clone of your devices so you will have a complete disaster recovery solution. We also implement and design data and operating system migration, imaging, and maintenance from antiquated or corrupted devices to new technologies and media.
What we do not do...
