Inspection and monitoring of incoming and outgoing network traffic and permits or block data packets based on a set of predefined security protocols.  

• This feature is a pre-requisite for activation of other ThreatProtect features.
• The NGFW is sized to match the Internet Service bandwidth.

Detect, block and remove malware from incoming traffic from outside the network or site. When a malware infected is downloaded to the network, NGFW detects and discards the infected file and redirects the user to a warning page. AV protection can be used in conjunction with SSL Inspection to scan SSL encrypted connections for malware infections.

Analyze, define and control the applications and user or user group access allowed traversing across the perimeter.

Cloud-based Sandboxing that runs advanced detection and automated mitigation of zero-day unknown threats in a separated secured environment.

Automated updates on the latest virus profiles with Cloud-based Sandbox analysis to detect and halt malware threats in between virus signature updates.

Pre-requisite:  Advanced Threat Protection

Advanced protection focused on defense against evolving threats targeting mobile devices on the network.

Screens and monitors the email stream for SPAM and filters off illegitimate content to protect the Email channels.

Screens and monitors incoming Web browsing content to block malicious websites and harmful, inappropriate content based on a set of defined rules the likes of URL categorization and malicious website blacklist. 

Screens and monitors incoming Web browsing content to block malicious websites and harmful, inappropriate content based on a set of defined Domain Name Systems.

An IP Reputation Service that provides Intelligence on malicious source IPs leveraging Fortinet’s distributed security network and collaborative partnerships, for proactive anti-botnet protection.

A threat prevention engine that conducts inspection and monitoring of incoming network traffic flows to detect and prevent vulnerability exploits of applications and systems.

Provides focused protection for web servers and web-based applications from the Open Web Application Security Project (OWASP) Top 10 attacks and many other threats riding on HTTP applications by applying advanced analysis on HTTP conversations.       

The WAF is offered according to HTTP throughput in the following size options:

• Up to 25Mbps 
• Up to 100Mbps
• Up to 500Mbps
• Up to 2Gbps

A NGFW configuration programmed for perimeter protection of individual sites in an Intranet or IPVPN network.  IntranetProtect is optimized for protection of sites in a private network environment with the following set of features:

• NGFW
• Anti-Virus
• Application Control
• Intrusion Prevention System 

IntranetProtect is sized to match the IPVPN service bandwidth subscribed.  

ThreatProtect is by default provisioned using Cloud VNF. Provision of physical CPE for customers who wish to have on-premised based appliance protection is available as a service upgrade option.  Physical CPEs are available for both NGFW and WAF.  

Provision of additional virtual service instance or physical appliance (if upgrade is subscribed) in a [1+1] mirroring configuration to provide High Availability (HA).  The service availability of the service will be increased to 99.99% when HA is subscribed.     

Management of configuration and administrative changes to Managed Perimeter Protection features like NGFW (E.g.  Permitted port access) and Application Control (E.g.  Access List), by SPTel IOC are available as Soft Change Value Added Service.    

• There are 3 categories of Soft Changes:  SIMPLE, INTERMEDIATE and COMPLEX.  
• Every Managed Perimeter Protection package offers a quota mix of different Soft Change categories at no additional cost.  
• Soft Changes beyond package’s quota are chargeable. 

User Access to the administrative module of Managed Perimeter Protection features, to perform configuration changes directly. This feature is exclusively available under Premium package.

The SPTel IOC runs 24.7.365, managing and running round the clock watch on security incident escalations for all security services.  The IOC is powered by cutting edge Next-Generation SIEM integrated with SPTel’s network monitoring platform, engineered to offer customers fast and accurate notifications and reports. 

Definition of a bespoke set of notification instructions for SPTel IOC to liaise with Customer on security escalations. 

The SPTel Customer Portal is the master concierge for all of customer’s relationship with SPTel, possessing customer focused functionalities and interactive modules that elevates their journey with SPTel.  The key customer modules that will be creating this experience are:

• Proactive Notification – Providing customers with proactive alerts and notification of security and network events through the case management module and email, supported by security dashboards reporting service performances and events in real time. The proactive notifications are accompanied with recommendations on possible mitigation and recovery measures, leading into the Product Catalogue for on-demand service upgrades and the messaging module for professional support interactions. 
• Product Catalogue – Customers are provided recommendations to buy or upgrade their services during report presentation and in times of incident escalations to upgrade their incident mitigation or protection coverage. The product catalogue offers SPTel services in both tenure and on-demand options.     On-demand services are available at the click of a button and provisioned seamlessly in as fast as 1 hour.     
• Customized Experiences – Customers enjoy flexibility and control in various aspects of their service experience, empowering better control and efficiency, like customizable notification protocols, notification thresholds and on-demand VAS activation and service upgrades.

The integrated ThreatProtect Portal in SPTel Customer Portal provides real-time monitoring and visualization of network perimeter events round the clock.  

Figure 3 ThreatProtect Portal

The Managed Security dashboard provides a real-time consolidated and correlated incident and events view across all of the Customer’s SPTel MSS services.

Figure 4 Managed Security dashboard