Extreme Networks Professional Security Services help reduce the risk and the high cost of a security breach as well as non-compliance with regulatory mandates. The constantly evolving nature of threats makes battling them an ongoing challenge.
Extreme Networks Professional Security Services are designed to enable our customers with best-in-class consultation before, during and after system acquisition. Utilizing these Professional Security Services is a cost-effective way to raise customer awareness of potential vulnerabilities in technical, operational and managerial controls.
By working with Extreme’s experienced and credentialed security professionals, customers will best be able to prepare and plan for real-world security threats and achieve the level of network security necessary for their businesses.
Extreme Networks offers a modular suite of Security Services, enabling customers to gain support and guidance at any stage of their security lifecycle.
Information Security Services
Rapid WLAN Security Assessment
The Rapid Wireless Local Area Network (WLAN) Security Assessment Service provides security vulnerability review of the WLAN 802.11 implementation by gauging the effectiveness of the WLAN security controls.
This fast track service enables the customer to identify vulnerabilities within their WLAN implementations and to prepare for future WLAN security. An Extreme Networks WLAN security consultant will deliver this service at customer premises.
Rapid Wired Security Assessment
The Rapid Security Assessment Service for wired network provides security vulnerability analysis/ review of the wired network elements by gauging the effectiveness of the implemented security controls.
This fast track service enables the customer to identify vulnerabilities within their wired network defense implementations and to prepare for future security defenses. An Extreme Networks security consultant will deliver this service at customer premises.
Rapid PCI Security Assessment
Extreme Networks Rapid PCI Security Assessment is a security planning and assessment consulting service that helps customers proactively review compliance with Payment Card Industry (PCI) Data Security Standards (DSS) requirements and protect payment card data.
During this service, an Extreme Security Consultant will examine your current Cardholder Data Environment (CDE) diagram that documents all connections to cardholder data and shows cardholder data flows across systems and networks. After a review of the CDE, a security scan will be performed to identify potential vulnerabilities that could be exploited. Any vulnerabilities identified during the assessment are included in the final report provided to the customer at the conclusion of the service — along with recommendations for addressing the vulnerabilities.
Rapid HIPAA Security Assessment
Extreme Networks Rapid HIPAA Security Assessment is a consulting service that helps customers proactively maintain compliance with Health Insurance Portability and Accountability Act (HIPAA) – Security Rule requirements to protect electronic Protected Health Information (ePHI).
During this service, an Extreme Security Consultant will examine your current Healthcare Information Technology (IT) diagram that documents all connections to ePHI data and shows ePHI data flows across systems and networks.
After the review, an enterprise tools based security scan will be performed to identify potential vulnerabilities that could be exploited. At the conclusion of the service, a final report will be provided, which will include security vulnerabilities findings, along with recommendations for closing discovered vulnerabilities.
Security Consulting Services
Security Assessment Service
Helps you improve your overall security posture:
- Identifies potential impact of threats
- Maps risks/threats to your key business and operational assets
- Provides actionable, prioritized recommendations
- Ensures you clearly understand the findings
Healthcare – IT: HIPAA Gap Analysis and Security Assessment Service
The Extreme Networks Healthcare Information Technology (IT) HIPAA Gap Analysis and Security Assessment service helps Healthcare providers and business associates achieve and maintain compliance with Health Insurance Portability and Accountability Act (HIPAA) Security Rule requirements.
This service focuses on practical analysis of safeguards, through vulnerability analysis and configuration review of security controls implemented to address the HIPAA security rules requirements.
Helps Healthcare providers and business associates achieve and maintain compliance with HIPAA Security Rule requirements.
- Identifies vulnerabilities that could be exploited and result in service interruption
- Helps customers comply with the law
- Proactively reduce costly remediation efforts associated with reacting to security attacks
- Provides specific recommendations to best protect the confidentiality, integrity and availability of electronic Protected Health Information (ePHI) as per the HIPAA security rules requirements
PCI Design and Assessment Services:
If you are trying to understand how to keep customer information safe from data breaches, you are not alone. Every business, regardless of size, is a target —some of the world’s biggest corporations have experienced data breaches with staggering hard and soft costs in the form of lost customers and brand damage. If you have customer credit card information anywhere on your network, you need to keep that information secure — and constantly comply with Payment Card Industry (PCI) standards.
Extreme Networks can help bring together the critical pieces of your business to create a PCI compliant solution, so you can mitigate the risks of security breaches and help decrease the cost of compliance. We understand that PCI is more than just a one-time compliance audit; it’s about securing your mission-critical business data, so your systems are secure and customers can trust you with their sensitive payment card information. With a full range of PCI services, Extreme Networks is uniquely positioned to help you develop, implement and manage the most appropriate PCI capable solution for your organization.
Extreme Networks Security Service is designed to help customers proactively achieve and sustain compliance with Payment Card Industry (PCI) Data Security Standards (DSS) requirements and protect payment card data.
PCI PLANNING AND ASSESSMENT SERVICE
As the starting point on your path to PCI compliance, our PCI Planning and Assessment service identifies the systems and resources that must be PCI compliant and determines where gaps exist. Our experienced Security Services team will meet with you, help you understand the requirements imposed by PCI, identify where the sensitive cardholder data lives on your network, and then determine if you meet the PCI standard for protecting that data.
We provide a full report including specific recommendations and action plans for closing identified compliance gaps.
PCI DESIGN SERVICE
PCI Network Design utilizes the output from Extreme Networks PCI Planning and Assessment service, where specific network infrastructure gaps, as per the Payment Card Industry Data Security Standard (PCI DSS) requirements are identified, and delivers a design to help close any security gaps in your current network infrastructure to help create a Cardholder Data Environment (CDE) that is compliant with PCI DSS requirements. (Prerequisite: Extreme Networks – PCI Planning and Assessment service.)
Extreme adheres to five basic principles of Network Architectural Design in support of the PCI-DSS network solution. The five principles are applied to each of the four discipline areas; Facilities, Network Design, Network Security, and Network Management.
PCI Network Design – 5 basic principles
- Scalable – flexible to support network growth and expansion
- Interoperable – to protect the network owner from reliance upon a single vendor
- Secure – to protect confidential or sensitive data and system availability
- Manageable – to enable rapid resolution of network outages or anomalies
- Available – to ensure that services have maximum up-time
PCI DESIGN IMPLEMENTATION SERVICE
Extreme’s PCI Design Implementation service stages, configures and tests the hardware and software specified by Extreme’s PCI Network Design service, addressing both the wired and wireless network comprising the Cardholder Data Environment (CDE). (Prerequisite: PCI Design service)
This service implements the outputs of the PCI Network Design and PCI Policy and Procedure Design services.
PCI POLICY SERVICE
PCI Policy and Procedure Design service helps customers establish the necessary set of information security policies and dependent procedures that fulfill Requirement 12 of the Payment Card Industry (PCI) Data Security Standard (DSS). Our security experts help define new policies where gaps exist with PCI DSS requirements and review your existing policies for compliance. (Prerequisite: Extreme Networks – PCI Planning and Assessment service)
- Policies and procedures designed by security experts, wireless experts and PCI compliance experts
- Address and close compliance and security gaps relating to PCI DSS Requirement 12
- Review, update, and development of policies and procedures
- Increased staff awareness of security practices
- Defined progression towards PCI compliance
- Provides final set of policies, procedures and documentation
- Single trusted security partner – Part of end-to-end suite of Extreme PCI Security Services for seamless synchronized implementation