Cyber Risk Coverage Application

Posted on 2014-08-12
Last Modified: 2016-03-23
HI Everyone
this is a second application I'm looking for an SMB trying to get Cyber Risk Coverage Insurance Policy.
All of our SMB clients already have Firewall, Antivirus, Disaster Recovery, etc. But this form is asking for more and we are struggling to find affordable solution or solutions.
We need intrusion detection software - I guess Sonicwall ID does not count?
We need event log recording, monitoring and alerting. - We use Labtech MMP, but this is more for system performance things and is limited on how long logs are saved and what is detected.
We need to have a program in place to test and audit network security controls. Would scanning network perimeter from SecurityMetrics (PCI compliance tester) would be sufficient? We can also get a device from them to periodically perform vulnerability scanning.
Anyone can help with advice?
Question by:mavrukin
    LVL 5

    Accepted Solution

    For intrusion detection, I cannot recommend anything stronger than I do OSSEC.  It's open source, easily configured, and it will do any alerting you need, save for making a phone call.

    I also recommend setting up an aggregate log system using syslog-ng.  Have all your servers point their logging to a central machine, and that collects everything and reports on anything amiss.  Again, open source.

    I recommend putting an instance of Splunk on each of these to create a GUI representation, making it easier for you to see what's going on in your systems.

    Yes, SecurityMetrics is good for scanning your perimeter.  They can also help you with your PCI compliance, if that's something you need to worry about.

    You can also look at Qualys for external scans, I recommend Acunetix and Nessus for internal scanning.  You can get a license for Nessus and run that internally yourself.  

    Based on what you're saying, it sounds like you could use someone to get this all going for you, maybe just to set it all up, but all these tools are what I call 'work amplifiers'.  If you have them in place, you have to have someone working with them to make them really hum and purr.
    LVL 1

    Author Comment

    Sean, yes we could use sine help. Can you help us?
    LVL 5

    Expert Comment

    by:Sean Jackson
    I'd be happy to. I sent you a message.
    LVL 1

    Author Closing Comment

    Sean was super helpful. Thank you.
    LVL 5

    Expert Comment

    by:Sean Jackson
    Thank you, Mavrukin.  Glad to help.

    Featured Post

    Highfive + Dolby Voice = No More Audio Complaints!

    Poor audio quality is one of the top reasons people don’t use video conferencing. Get the crispest, clearest audio powered by Dolby Voice in every meeting. Highfive and Dolby Voice deliver the best video conferencing and audio experience for every meeting and every room.

    Join & Write a Comment

    Even if you have implemented a Mobile Device Management solution company wide, it is a good idea to make sure you are taking into account all of the major risks to your electronic protected health information (ePHI).
    This paper addresses the security of Sennheiser DECT Contact Center and Office (CC&O) headsets. It describes the DECT security chain comprised of “Pairing”, “Per Call Authentication” and “Encryption”, which are all part of the standard DECT protocol.
    Get a first impression of how PRTG looks and learn how it works.   This video is a short introduction to PRTG, as an initial overview or as a quick start for new PRTG users.
    In this tutorial you'll learn about bandwidth monitoring with flows and packet sniffing with our network monitoring solution PRTG Network Monitor ( If you're interested in additional methods for monitoring bandwidt…

    729 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    17 Experts available now in Live!

    Get 1:1 Help Now