Seros || Security Services

Seros provides End-to-End Security Solutions that ensure your enterprise has a secure SOA and Web services environment, all while maintaining service performance. Our experienced security team performs enterprise security services across a full spectrum of security domains. We are well-practiced in designing and implementing enterprise-wide security services such as:

Single Sign-On (SSO) Solutions
Federated Identity Management (FIM) Solutions
Security and Governance for SOA/Cloud implementations via SSO Identity Provider and XML Firewall Appliances.

Seros provides Security Services across all the Security Domains shown in the diagram below:

Some examples of completed efforts for our customers along with the products and standards utilized are shown in the table below. Additionally, the Seros Cloud/SOA Knowledge Repository contains detailed architecture and design artifacts along with the associated documentation.

Capability	Short Description	Standards/Products
Single Sign-On (SSO)	Provide user authentication SSO across an organization to include SSO Role Based Access Control (RBAC) and SSO Entitlement	WS-Federation, WS-Trust, SAML, PingFederate®, OpenSSO, RSA
Federated Identity Management (FIM)	Manage identity and trust across multiple organizations and cloud vendors integrated with SSO for user authentication	SalesForce.com, Google Apps, AngelPoints
Identity and Access Management	Provide centralized user management and provisioning to deliver faster on-boarding and stronger management of business roles	Active Directory®, MS Identity Lifecycle Manager (ILM)
Web Services Security	Provide secure web services using SSO Security Tokens in Web Service SOAP headers, as well as RBAC of Services	WS-Security, XML Encryption, XML Signature
XML Firewall	Provides security and governance for SOA traffic and acts as the Policy Enforcement Point (PEP)	SAML, XACML, WS-Security, WS-Trust, WS-Policy
Network Security	Provide architecture and implementation services that enforce boundary protection for an organization	Firewalls, DMZ, Internet Proxy, Network Segmentation (VLAN)
Auditing	Provide enterprise audit event logging in accordance with Common Criteria, as well as threat signature engineering	ArcSight® ESM™
Systems Management	Provide integrated systems health and monitoring capabilities integrated to event reporting for support organizations	Hewlett Packard® OpenView™ (HPOV), Hewlett Packard® Operations Manager™ (HPOM)
System Hardening	Provide services to perform and evaluate system vulnerabilities via source code scanning and penetration testing	Nessus® , Center for Internet Security (CIS), Fortify®, Web Application Scan, Skipfish
Application Development	Provide secure design patterns for application developers and support development staff implementation	OWASP, Compliance with CISSP
Business Continuity	Perform Business Impact Assessment and design Disaster Recovery solutions for the enterprise	BIA, RTO/RPO for DR
Regulatory Compliance	Perform security compliance assessment covering a wide range of governmental and industry regulations leading to planning and implementation of solutions for compliance gaps	PCI, HIPAA, SOX, CA SB 1386

Security Services

Seros provides Security Services across all the Security Domains shown in the diagram below:

Learn More About How Seros Can Secure Your Enterprise

Some examples of completed efforts for our customers along with the products and standards utilized are shown in the table below. Additionally, the Seros Cloud/SOA Knowledge Repository contains detailed architecture and design artifacts along with the associated documentation.

Capability

Short Description

Standards/Products