HGS Digital

Cloud security operations center (SOC)

Increasing data security and taking organizational resilience to a new level

Address security vulnerabilities and concerns with cloud SOC services

Organizations are facing increasing external threats to their data security. There is a cyberattack in the US every 39 seconds. Breaches cost millions of dollars and have negative reputational impacts.

Many organizations are struggling to keep up with the ongoing challenges caused by more creative hackers and pervasive attacks. Tech labor shortages, increases in connected devices, rushed product releases, and changing regulations are just some of the challenges that those responsible for protecting data are juggling simultaneously.

HGS Digital’s security professionals can work with you to ensure that your intellectual property, applications, and data are monitored, secure, compliant, and available. We work to fill security gaps.

Not only can we help to resist attacks, we can help manage breaches that have already happened. If your organization has fallen victim to malware or a deliberate attack, our knowledgeable customer service and social media teams can help you rebuild trust. With thousands of professionals on staff, we go well beyond what a traditional IT outsourcer can do to get you back in business.

Cybercrime is on the rise; fight back on multiple levels

Most hackers and cyberattackers are driven by money, intellectual challenge, or political or social motivation

On average, 23.69% of Internet users’ computers worldwide experienced at least one malware-class attack.

The average cost of lost or stolen records per individual is $141.

Much of the healthcare industry has been infected with malware over the last year.

Global ransomware damage costs are predicted to reach $20 billion by 2021.

At a group conference, male analyst discusses a data breach and the need for better data security

Get next-level monitoring, response, management, and compliance

Our clients are not unmerited in their concerns around data security. Fallout costs from data breaches are projected to reach $6 trillion USD in 2021. Beyond the initial impact, the hits that brands take as a result of those breaches affect growth and revenue for many years thereafter.

Customers want to feel confident that the information they share with your organization is protected. Once there is a breach in trust, they will not soon forget the risk and exposure that you caused them. But negative reverberations don’t stop at the individual level. Class-action lawsuits, cancelled contracts, bad press, and nervous and distracted employees are also common after an attack, unfortunately.

In a climate where social media prevail, even one user complaint about a breach can be shared with the masses, with long-lasting effect. Every time someone conducts a web search on your company, they will be able to read about the attack and see your response to it.

In an increasingly complex, connected, and user-centric world, it’s prudent to prevent and prepare for data breaches. Our team of seasoned security experts can secure your data, increase your resilience, protect your brand, and provide extra peace of mind.

Our SOC services are tailored to your needs

Every company’s IT infrastructure and security challenges are unique. Some clients use our security services as an extension of their overall contact center as a service (CCaaS), while others have engaged us specifically for our technology and security strengths.

Our platform-agnostic approach and work with dozens of international clients means we are capable of delivering a totally customized security monitoring and management solution just for you.

Information security monitoring and analytics

Events log analysis (SIEM), firewall log analysis and vulnerability assessments, penetration testing, and ethical hacking

Security incident
response

Identification and containment, malware eradication, and recovery forensics

InfoSec compliance and consultancy

InfoSec consulting, business continuity planning, disaster recovery testing, and policy/process improvements (Six Sigma)

Security audit and assessment support

Internal and external and third-party audits for PCI-DSS v3.2, HIPPA, ISO 27001: 2013, GLBA, and SOX

Threat intelligence and vulnerability management

Risk assessments, mitigations, and computer emergency response

Supplement your security resources to minimize risk

Our never-distracted team will work diligently alongside yours to assess potential vulnerabilities. If you’re lacking, use our log collection, reporting, knowledgebase, ticketing, threat intelligence, and reporting resources to round out your skillsets.

Whether you’re looking to validate your policies and procedures, perform an audit, have had a security incident, or are pursuing a new contract or security strategy, we have the layered service delivery framework to achieve your goals.

L1 SOC:

24/7 monitoring and incident detection (via online and email alerts)
Request handling

L2 SOC:

Incident analysis and validation
Remediation support
Trend monitoring and analysis
Routine operational tasks and reporting
Escalation management

L3 SOC:

Incident recommendation to IT subject matter experts
Coordination with client network operation center (NOC) team
Compliance impact analysis
Service management reporting

Group of IT pros look at a laptop and discuss the need for increased resources for data security

Man's hands hold a cell phone next to a laptop showing a padlock and the words Cyber Security

Cybersecurity threats to enterprises: Surviving a cybercrime

Our cybersecurity whitepaper explains how to improve data security and describes our security approach.
Download the whitepaper

SOC resources are at-the-ready to protect your assets

Our SOC is anchored on three pillars. People are the brains behind the SOC, technology is the brawn, and processes tie the people and technology together.

Our people work 24/7 to understand the nuances of your business. Our cost-effective services are provided from the Philippines; however, we can travel for short-term, onsite projects.

The technology we rely on is segregated into endpoint security tools (e.g., anti-virus, patch management, web and email filters) and data loss prevention tools for protecting laptops, desktops, and servers.

We conduct vulnerability assessment and penetration testing (VAPT) on critical systems. We also use security information and event management (SIEM) techniques to proactively monitor and correlate events to uncover suspicious network activities, forensics and reverse engineering to investigate incidents, intrusion prevention/detection systems (IPS/IDS) file integrity monitoring (FIM) tools to provide network perimeter defense, and firewall log analysis to monitor and authorize all traffic passing through the firewall.

The SOC’s back-end processes include governance, continual service improvement, escalations, and service management reporting to help you stay secure.

Security Center of Excellence with two agents in a computer room monitoring client data security

Our team certifications and industry compliances inspire confidence

We are ISO 9001 and ISO 27001, HIPAA, GLBA, SOC1/SOC2, GDPR, and PCI-DSS compliant. Our team continues to build skills and stay current on industry certifications, and we work actively with our clients to assess their readiness to attain compliance or certifications.

With the sharp rise in cybercrime, it pays to invest in resources who have the training and certifications that are most likely to ensure the security of your data.

FAQs

Please describe the SOC team in more detail.

The SOC team is small enough to allow team members to know each other well, but large enough to provide comprehensive security coverage. Calls are answered 24/7/365 by an L1 support team member, who escalates to an L2 or L3 support team member as required by the situation or incident. The L1, L2, and L3 team operates in shifts, works in the same office, and has a low attrition rate (6.25% for L1 and 0% for L2 and L3). All SOC staff are subject to thorough background checks and clearance certificates from the National Bureau of Investigation (NBI), which is the Philippines equivalent of the USA’s Federal Bureau of Investigation (FBI).

How does the HGS Digital SOC work alongside my existing team?

HGS Digital has multiple levels of engagement for SOC services:

Level 1: Information security monitoring and analytics: monitoring of event logs, correlation and alerting. Event logs will come from various devices such as firewalls, routers, switches, servers, etc.
Level 2: Security incident response: incident identification and containment, malware eradication, and recovery forensics
Level 3: InfoSec compliance and consultancy: policy and process formulation and review, as well as process improvements and enhancements
Level 4: Security audits and assessments: internal and external in preparation for PCI-DSS, HIPAA, ISO 27001, etc.
Level 5: Threat intelligence and vulnerability management: risk assessments and mitigations. Based on the services you select, we’ll collaborate with your team to develop roles, responsibilities, and key points of interaction to work together successfully.

If my business is attacked, who is liable?

In the event of a cyberattack, L1, L2, and L3 SOC team members will work with your designated IT counterparts for SOC incident response and mitigations. Our SOC management team will engage with your management team and other stakeholders for governance reporting and a monthly/quarterly SOC performance review. While we work with our clients to achieve data security, we do not indemnify in the event of a security breach; the client is still ultimately responsible.

How is the SOC team involved in taking corrective action and addressing incidents and issues?

The HGS Digital SOC team will monitor and provide timely alerts to your IT team for any security incidents observed and will provide recommendations for mitigation and containment. The HGS Digital SOC team may also perform vulnerability assessment and penetration testing activities, report on any discovered vulnerabilities, and recommend fixes or patches for such vulnerabilities.

Transform your business with our end-to-end cloud services

HGS Digital provides end-to-end cloud services support.

Moving to cloud enables you to achieve faster time-to-market and free your resources to focus on other business goals. Cloud solutions reduce IT complexity, increase productivity, and provide the flexibility to scale up and down to meet the dynamic needs of your business.