Home Security, Risk and Compliance Management
Security Risk and Compliance Management Solutions

E-SPIN has a variety of security, risk and compliance management solutions offer range from data encryption, secure real time information exchange, complete end to end secure enterprise environment for data generation, exchange and storage, network perimeter defense, virtual private network, intrusion detection and protection, enterprise content security, vulnerability assessment, patch management and security hardening, security and network management, identity and network access management, policy compliance and enforcement.

  • Network & Wireless Security, Firewall / VPN, Intrusion Defense, Identity Access Management, Network Access Control (NAC),
    Security Event Management (SEM), Incident Correlation Analysis and Reporting System
  • Vulnerability Management, Security Assessment, Penetration Testing; Web, Application, Server and Network Vulnerability Assessment (VA), Patch Management and Security Hardening; Remote Trojan, Malware Reverse Engineering and Hostile Source Code Analysis; Wireless Security Assessment; Exploitation Development and Testing Framework
  • Database Security, Database Activity Monitoring (DAM), Database Vulnerability Assessment, Database Compliance Auditing, Database Virtual Patching, Database Intrusion Prevention, Database End-User Accountability
  • Content Security, Employee Computer PC and Server Activity Monitoring, Virus, Spyware, Phishing, Web, E-mail, IM, P2P Blocking and Filtering, Endpoint Security and Port Management, Data Theft Prevention
  • Data Encryption, Code, Files, E-mail, Database, Folders, Virtual Disk, Full Disk Encryption, Digital Steganography, Watermarking and Fingerprinting; Secure Data Erasure and Destruction
  • Digital Signature and Signing, Multi Factor Authentication, Managed, Automated, Secure File Transfer (SFTP) and Application Tunneling, Secure Document Exchange and Storage
  • Governance, Risk Management and Compliance Enforcement (GRC)
Network Security, Firewall / VPN, Intrusion Defense, Identity Access Management, Network Access Control,
Vulnerability Assessment and Patch Management, Security Event Management

Firewall (Gateway and Perimeter Defense)

  • E-SPIN's firewall solution provides just what your organisation needs to safeguard IT assets against unauthorized access and security threats. Our solution helps you identify weaknesses, improve security and reduce the chance for exposure to dangers on the network and on the internet. E-SPIN's firewall solution is a vital first line of defense that protect your enterprise information and network system from compromise; helps ensure secure, ongoing communications between your private network and public networks (the Internet); reduces the costs and disruption of security breach and intrusion-initiated downtime.

VPN (Site-to-site IPSec and SSL VPN secure remote access)

  • VPN (Virtual Private Network) as a means of having the security benefits of a private, dedicated, leased-line network, without the cost of actually owning one. VPN uses cryptography to scramble data so it's unreadable while traveling over the Internet, thus providing privacy over public lines. Companies with branch offices commonly use VPNs to connect multiple locations. E-SPIN's offer full range of VPN solution utilizes PPTP, IPSec ESP or SSL VPN that forward encrypted packets through secure encrypted tunnels for site-to-site and secure remote access VPN data transfer.

Network and Host Intrusion detection and prevention (IDP)

  • Beyond firewalls for perimeter defenses, making enterprise network secure requires a level of visibility into the nature and characteristics of network traffic to identify and control security threats from unauthorized users, back-door attackers, external hackers and internal intruder. E-SPIN propose combination of host and network-based intrusion detection prevention (IDP) system provides critical deep-packet analysis and application awareness and can be deployed passively for intrusion detection (sniffer mode) or actively for intrusion prevention (in-line mode). In both deployment scenarios, the E-SPIN host and network IDP gives you unsurpassed security intelligence about the network traffic on your network and removes much of the guesswork involved in establishing perimeter defenses.

Identity Access Management

  • E-SPIN provide comprehensive solution to assist enterprise to identify fraudulent people. Critical components of identity and access management include identity resolution, web and host single sign-on (SSO), user provisioning, advanced and legacy authentication, public key infrastructure, and directory services. E-SPIN Identity and Access Management solutions help your enterprise align security management strategy with your business goals by: automatically managing who has access to which resources and services; logging and reporting what they have done; and enforcing business, privacy and security policies.

Network Access Control (NAC)

  • In today's enterprise, the network is increasingly becoming the business. Diverse users, including employees, guests, contractors and partners, need access to a myriad of network resources and applications, ranging from simple Internet access to the sensitive internal data. As access has grown, however, so too has the risk in providing it. E-SPIN Network Access Control solution combines user identity and device security state information with network location information, to create a unique access control policy for each user.

Web/Application/Server/Network Vulnerability Assessment (VA)

  • Successful vulnerability management begins with determining which assets are the most important, identifying vulnerabilities on those assets, responding to breaking threats, and remediating them. E-SPIN Comprehensive Vulnerability Assessment (VA) and Vulnerability Management solution proactively ensures that your enterprise are identifying the latest web/application/server/system/network vulnerabilities and complying with corporate and regulatory policies to manage information security risk. E-SPIN priority-based vulnerability management solutions address the entire risk management lifecycle, from policy creation through regulatory compliance.
  • Website and Web Application Security Audit, Vulnerability Scanning and Reporting - Acunetix Web Vulnerabilities Scanning (WVS) >> 
  • Vulnerability Exploitation, Research and Development, and Testing Framework - Immunity Security CANVAS and PlugIn, SILICA and SILICA-U (for wireless security assessment, penetration testing)>>

Patch management, remediation and security hardening

  • A large percentage of security incidents occur as a result of assets that have not been properly patched, remediated or hardened. E-SPIN patch management, remediation and hardening solution provides methods for automating this process, reducing your administrative costs and risk exposure.

Security Event Management (SEM) and Incident Correlation and Reporting System

  • E-SPIN Security Event Management (SEM) and Alert Reporting solutions collects, correlates, and reports on logs from enterprise-wide firewalls, proxy servers, routers and intrusion detection prevention device and Radius servers to helps enterprise to track intrusion detection, manage user access, audit traffic, and also help you to manage your network bandwidth.

All-in-one integrated security appliance / Unified Threat Management (UTM)

  • New trend towards integrated all-in-one appliances due to ease of integration without the compatibility problems and general hassle of installing software on multiple hardware. Speed of deployment and ease of management are what busy administrators want today. Implementing an integrated appliance will drastically ease ongoing security management and reduce network complexity. E-SPIN offering all-in-one or unified threat management (UTM) solution appliances contain some, but not necessarily all, of these functions: Stateful inspection firewall, Site-to-site VPN, Remote access VPN, Gateway antivirus scan for web, ftp, email (pop3, smtp, IMAP), web URL blocking or filtering, email content blocking or spam filtering, intrusion detection and prevention (IDP) or Deep Packet / Application Inspection (DPI).

Database Security, Database Activity Monitoring (DAM), Database Vulnerability Assessment, Database Compliance Auditing, Database Virtual Patching, Database Intrusion Prevention, Database End-User Accountability

E-SPIN represented global leading integrated database security suite provide end to end database security system solution that have the following mix and match component/module work together as a single unified solution.

  •  Database Vulnerability Assessment
  •  Database Compliance Auditing
  •  Database Virtual Patching
  •  Database Intrusion Prevention
  •  Database End-User Accountability
  •  Database Activity Monitoring

 

 For more please click here for detail.

 

Content Security, Employee Computer PC Activity Monitoring, Virus, Spyware, Phishing, Web, E-mail, IM, P2P Blocking and Filtering, Endpoint Security and Port Management

Content Security solutions

  • Performance is essential to content security - slow, inefficient solutions cannot be tolerated in today's fast-paced networks. E-SPIN content security solutions allows enterprise to monitor, manage and filter information flow across enterprise network, host server and client.

Employee PC and Server Activity Monitoring

  • Complete monitoring of the network from one PC. Get real time and accurate detailed stats of what your employees do on PC and Server. Unprecedented control. Complete invisibility. Superb tracking to prevent employee misuse or abuse company computer resources. For More detail >>

Web and URL content filter

  • Web Filter also knows as internet filter, use to configure enterprise web URL access policies and managing internet access traffic. Web filter can filters by keyword or blocks by URL and decide what a web browser will display in the benefit of the enterprise interest. E-SPIN Web Filter Package will serves as a line of defense between your enterprise users and the Internet by examining requests and allowing or denying access based on company-specific rules. By providing both platform-independent and platform-integrated solutions, E-SPIN's Web Filter requires no change to your current architecture. E-SPIN's Web Filter is designed with the most critical content risks in mind, it incorporates quality content, artificial intelligence, multiple deployment options and comprehensive reporting and analysis. Flexible rule creation gives you the ability to restrict access to go sites you deem inappropriate, as well as create threshold rules that set time or size limits to manage bandwidth. Both of these options give you an easy and effective way to protect your users from excessive non-business surfing, security threats, and inappropriate material. Mobile remote filter extend web filter to protect corporate and mobile laptop users outside enterprise's network. It is critical endpoint protection strategy for enterprise to ensures secure employee internet use anytime and anywhere.

Anti-spyware, adware and keylogging

  • Spyware threats, it is more than just a nuisance, it poses a threat to organizations by having the ability to: Gather private/personal information, Steal copyrighted or confidential information, Create irreparable system instability, Damage or interfere with legitimate applications operation, Open a backdoor on infected systems, and Allow a spyware operator to take over an infected system. To stay secure, you need the most up-to-date spyware protection available. E-SPIN offer advanced spyware protection solutions to resolve enterprise spyware concern.

Enterprise Anti-virus, worm and malicoous code protection

  • Enterprise anti-virus is part of the network security that can not be compromise. The main purpose for deployment of enterprise anti-virus protection is to get the virus threats under control and prevent virus spread widely to compromise the entire network. If the servers, workstations and desktop computers in your company are not protected against viruses, your corporation is exposed to serious risk. The propose E-SPIN's enterprise antivirus solution is a bundled package in a combination of Server and Desktop Client anti-virus protection licenses working together for complete client and server protection environment.

IM and peer to peer application content filter

  • The next generation of security threats have arrived - P2P (file-sharing application), Instant Messaging (IM), Spyware and unauthorized http tunneling. For instant, Instant messaging applications can provide attack points for hackers seeking to gain entry into corporate systems by presenting tunnels through firewalls. E-SPIN offering real-time application to filter of the above mention application to protect against security breach and application abuse.

E-mail and anti-spam content filter

  • Spam is growing rapidly, making anti-spam and spam blocker services more important than ever. It is estimated that over 70% of today's business email is spam. E-SPIN email filter and anti-spam filter software and hardware appliance solution provides comprehensive protection against email usage and spam problem.

Endpoint Security and Port Management

  • prevents data leakage, data loss and stopped data theft by manage and control endpoint device, portable storage with centralize or standalone log and reporting. For More Detail >>
Data Encryption, Code, Files, E-mail, Database, Folders, Virtual Disk, Portable Storage, Full Disk Encryption; Digital Steganography, Digital Right Management (DRM), Watermarking and Fingerprinting; Secure Data Erasure and Destruction

They are many ways of using information encryption and steganography to ensure confidentiality and hide the right content from authorized user:

Data encryption (code, files, e-mail, database, folder, virtual disk, portable storage, full disk)

  • Encrypt and decrypt files stored and used on a PC, network or portable storage to protect such files from unauthorized access or information hijacking. Thus, should the PC, network or portable storage be stolen or accessed by an unauthorized individual, the data held in permanent storage may be considered reasonably secure. They are various approaches to achieve your desired operational mode of encryption, it range from the encryption of entire hard disk, virtual disk encryption, portable storage and media, selective folder and file encryption, email encryption, source code encryption, database encryption, mobile device encryption (with two-factor authentication) and degree of central administration to match your operation requirement. For instance, data file/folder and hard disk information protection thru data encryption that utilize the 3DES and AES is common for the enterprise security practice

Digital Steganography, Digital Right Management (DRM), Watermarking and Fingerprinting

  • Digital Steganography/ Watermarking / Fingerprinting is widely use solution to to protect, track, and monetize a variety of digital content, including audio, video and image material for copyright protection requirements. It provide the benefit of inaudible; survives all forms of compression, encryption, tranmission, duplication and conversion, insible to all forms of analysis; can not be removed without damaging the original content. 

Secure Data Erasure and Destruction

  • It is common and best practice to secure data remove / erase or complete descturction of sensitive data in the secure way against professional data recover/unformat attempt by information theft or secure erase the harddisk before retire them from the production envrionment or reasign the harddisk or storage for auction/recycle or transfer ownership.
Digital Signature and Signing, Secure Document Exchange and Storage

They are many ways of ensuring secure end-to-end secure document exchange with secure storage for authenticated users:

Digital Signature and Signing

  •  E-SPIN digital signature solution is a industry open standards-based electronic signature solution. Signing & sealing electronic documents will immediately expedite business processes and reduce costs. It is based on standard PKI technology, guaranteeing signer authenticity, data integrity and the non-repudiation of electronic documents. The solutions covre all major applications and file formats (Word, Excel, Outlook, PDF, TIFF, AutoCAD, InfoPath and many more). With a rapid deployment, unique centralized approach, built-in integration with an organization's existing user-management directory systems, and extensive 3rd party application support, The solution guarantees a quick ROI.

Managed, Automated, Secure File Transfer (SFTP) and Application Tunneling

  • File transfer over open network is insecure and subject to hijack and info theft on the sensitive data. E-SPIN offer full range of encryption-based, secure file transfer (SFTP over SSH, over SSL, custom/proprietary large file transfer accleration, managed, automated, end-to-end secure file transfer) and secure application tunneling solution that delivers enterprise-grade security, reliability, scalability and guarantees that data transmissions will remain secure traveling across open networks.  blue arrow icon For Solution Overview and Detail

End-to-End Secure Document Exchange and Storage

  • E-SPIN's offer an encryption system that permits end-to-end encryption of information over an untrusted interconnection network. The information encryption system includes at least one client for processing information (secure encryption and decryption client). The system also includes at least one storage device for holding the information (secure encrypted storage). At least one key server provides a data key for encrypting and decrypting the information (secure encryption and decryption server). All the client and server communication is through PKI and secure tunneling to ensure communication channel is encrypted and safe across over public Internet.


 Governance, Risk Management and Compliance (GRC) Enforcement

Policy Compliance, Enforcement and Management

Policy management is no simple task, and as laws and industry regulations change, the task of ensuring policy compliance is often a quickly evolving one. We deliver solution package to assist security, risk, compliance and auditor in Policy Compliance, Enforcement and Management tasks.

  • E-SPIN offer Policy compliance, enforcement and management solution that is scalable, flexible and practical for the specific tasks in hand. As policy compliance can encompass many tasks from configuration management, vulnerability or configuration assessment, device audit and inventory, configuration reset, network traffic compliance, centralized logging and centralized reporting functions. Not to mention compliance report preparation and automation with pre-existing templates created to help enterprises ensure compliance with many standards and legislation is unique time savers for the enterprise operation and management officer.
    Enterprise Policy Management solutions:

    • Apply policy regardless of location

    • Determine actual endpoint state

    • Enforce policy everywhere

    • Determine regulatory compliance