Vulnerable web applications are the number one attack vector today. Often organizations find that developers simply do not have the bandwidth or resources to remediate vulnerabilities in the web applications, making WAFs an efficient way of protecting against harmful exploits.
 

The Solution:      ActiveGuard managed services and monitored services for WAFs.

Industry analysts at Forrester report the main reasons for using WAFs are security, meeting compliance (PCI DSS, SOX, CobiT, etc), visibility into web traffic and issues; and infrastructure and network optimization.

Solutionary helps to address the pitfalls of WAF maintenance and false positive issues with trained personnel available 24/7 to review anomalous traffic. SOC engineers review and correlate anomalous web logs against current attack patterns to determine if the WAF is experiencing false positives by confirming whether the alert is against a valid resource or new benign-but-dynamic content.

Solutionary has...

• Security Engineering & Research Team (SERT) expertise
• Global threat analysis; incident response; forensics
• Emerging vulnerability research laboratory
• Best-of-breed WAF monitoring and management support
• Advanced correlation engine with entire security platform
• Cross correlation of attacks for better risk understanding
• Block/Do not block recommendations
• 24/7 service and support including:
  -- expert SOC analysis of alerts
  -- false positive investigation
  -- dynamic content analysis
  -- tailored escalation procedures
• Support of over 100 devices and applications: Breach, Imperva, BlueCoat, Palo Alto Networks, Cisco, Snort, Apache, McAfee, ISS and more
• Certified security experts (HITRUST CSF, CISSP, CISA, CISM, GCIA, CSOA, QSA and others)
   

Select from any of our web application security services:

• ActiveGuard Log Monitoring & Log Management
• Vulnerability Management
• Compliance Services
• Security Device Management – WAFs and beyond
• Evidence & Log Vault