The mbits Secure Internet Enterprise Gateway Environment (SIEGE) is offered as a fully managed end to end service. SIEGE comprises secure web hosting, email, secure firewall management, secure remote access, application based filtering and the latest security information and event management SIEM capability.
Through its highly innovative design incorporating the latest technology, mbits SIEGE delivers generational change in secure gateway functionality and capability.
In developing SIEGE mbits removed legacy technology limitations entirely which over time have restricted and constrained existing gateway service offerings. Coupled with removal of these limitations, came clear understanding of “what is increasingly required" in meeting current and emerging security threats, security policy, delivery of best practice threat management and mitigation, provision of online services and responsive change management.
mbits has built & designed SIEGE with Federal Government in mind, with particualr attention to the specific needs and requirements of small to medium sized agencies. mbits SIEGE scales from the smallest agency to the largest Department cost effectively.
People
mbits has secured the services of highly experienced, qualified personnel with the skills, expertise and “service ethic” to build, manage and support SIEGE. As with all mbits staff, these personnel reside and are physically located in the ACT/Federal Region with the infrastructure in place to support customers wherever they reside.
Key Infrastructure
The physical gateway infrastructure is located in the T4 rated mbits Data Centre, Canberra.
The Service Desk supporting the Gateway service is ITIL (ITSM) compliant and also physically located in the Federal region.
mbits SIEGE at a Glance
Secure Gateway to PROTECTED level housed in the mbits T4 accredited Data Centre
All Hardware is EAL4 compliant and supports IPV6
Secure Web Hosting
email Gateway with email filtering
Real time HTTP scanning, FTP scanning, URL blocking, Alerting, Logging and Automatic Updates
Secure Firewall Management
Security Management
Forward Proxy and Reverse Proxy
SSL VPN gateway remote access from any Internet connected machine – SSL with 2FA
Content Filtering
Application based filtering – block certain applications OR components of those applications based on individual client/user profile.
Policy control by application, users and/or content.
Day-Zero Protection Against Application Level Attacks
Intrusion Protection (IPS) and Intrusion Detection (IDS)
NIPS (Network Intrusion Prevention) and HIPS (Host Based Intrusion Detection).
High availability delivered via a fully redundant gateway, diverse paths and diverse Internet feeds
Continuous Vulnerability assessment - ethical hacking used as input into VA and security risk management
Client Access – via ICON, Private IP Networks, Public networks, mbits managed services clients
Common Services, Monitoring, Customer Visibility & Reporting via mbits on line service portal
mbits 24 x 7 Service Desk and Network Operations Centre support operating to ITIL (ITSM)
All operational staff are cleared to PROTECTED or higher
- Complete set of Unified Threat Management (UTM) security features
Stateful firewall
Intrusion prevention and detection
Antivirus
Antispyware
Anti-adware
Anti phishing
Anti spam
Web filtering—worms, spyware, trojans, malware
High Performance and High Throughput – Single Pass Parallel Processing Architecture
Exert fine-grained control over application traffic and application access by user
Identify applications across all ports, irrespective of protocol, SSL encryption or evasive tactic.
Enable policy control based on user identity and/or group membership, not just the IP address.
Protection in real-time against attacks and malware embedded in application traffic.
Centralised, policy-based management reduces the risk through simplifying rollout and updates
Simplified policy management with powerful visualisation tools and a unified policy editor.
Multi-gigabit throughput with no performance degradation when deployed in-line.
Unique Identification Technologies enable greater visibility and control
Application Command Centre – visualisation tools
Fedlink Access
Flexible Networking Architecture – permits connection to virtually any Network
Virtualisation - divides the network into secure segments for additional protection
Rapid-deployment features, (Auto Connect VPN and Dynamic VPN services)
Talk to mbits today about the "new benchmark" in Secure Internet Gateway Service., mbits SIEGE.
