Security Solutions

We believe that data, identity, encryption, and authentication policies must come together to seamlessly set compliance policies and ensure protection of critical data, and so Nile.Com offers comprehensive solutions that enable the organizations to control how data is accessed and managed.

Corporate data moves within and outside of the perimeter. More mobility makes it more difficult to see how sensitive information is being accessed and moved into cloud applications. The complexity of combining data protection, encryption, authentication, and identity management solutions makes it difficult to set policy. The challenge can be solved by thinking of information protection holistically—allowing you to control policies seamlessly, as data moves from on-premises, to cloud and mobile devices, and everywhere in-between.

Our DLP solutions provide deep visibility and the ability to control how individual user can access data, which can help your organization connect identity as the control point to seamlessly set policies and define how data moves.

Our portfolio includes data loss prevention solution that will:

• Help you discover, monitor, and protect your data;
• Give you visibility into what data is confidential, where it is stored, who is using it, and for what purpose;
• Help secure all your essential information.

Products and Technologies:

• Microsoft Active Directory Rights Management Service;
• Microsoft Azure Active Directory Premium;
• Microsoft Azure RMS;
• Blue Coat DLP;
• Symantec Data Loss Prevention.

Public and private sector organizations around the world are high risk targets for attack and penetration of their IT systems. These attacks can cause significant financial impact to an organization. Nile.Com helps organizations adopt the best fitting solution to reduce the impact of any security exposure they could have.

In today’s world, many criminals work from the comfort of their own homes, hacking into major computer networks and leaving no trace behind.

They are able to:

• Steal your customers’ financial and other identities;
• Invade your clients’ records and purchasing histories;
• Penetrate your corporate assets;
• Wreak havoc on your entire network infrastructure.

They target areas of weakness in the application, middle tier (database) and the infrastructure layers of your IT systems.

Understanding and balancing security risks with business needs and implementing solutions that reduce the impact of security exposures will enable companies to conduct business with higher confidence.

Therefore; we provide database security and compliance solutions that offer:

• Centrally-managed, enterprise-scale, database hardening;
• Comprehensive policy compliance;
• Database masking;
• Vulnerability assessment;
• Database monitoring and auditing for improved data security across the enterprise.

Products and Technologies:

• IBM Guardium Database Activity Monitoring;
• IBM Guardium Database Auditing and Real-Time Protection;
• IBM Optim Data Masking;
• Fortinet-FortiDB.

Unstructured information in Office documents, PDFs, email, attachments, images, CAD design files, and more is growing much faster than structured information and so Nile.Com offers solutions that automates unstructured data classification while maintaining the security of this data.

Automated data classification at the time of data creation is necessary to stay ahead of protecting this data. Our offering here is a powerful yet lightweight solution that automates unstructured data classification and deterministic protection of email, MS-Office documents and PDF files, while addressing the requirements of enterprises that need to streamline compliance processes and optimize existing DLP and email encryption gateway deployments.

Moreover, our PCI HSM certified, tamper-resistant HSM for cryptography; had been designed specifically for payment processing solutions, delivering high-performing cryptography and key management capabilities for card payment authorization and real-time fraud prevention. Also can assist customers in leveraging best-practices around PCI-DSS, and meet NIST and ANSI standards for security and compliance audits.

Our portfolio additionally includes endpoint, disk, drive, folder, file and email encryption solution. That integrates with Data Loss Prevention solutions to automatically encrypt sensitive data being moved onto removable media devices or residing in emails and files.

Products and Technologies:

• HP Atalla Network Security Processor – HSM;
• HP Atalla Information Protection and Control-IPC;
• HP Atalla Remote Key Management;
• Symantec Endpoint Encryption-PGP.

Today’s enterprises are more vulnerable to online attacks than ever before, and thus Nile.Com helps you understand and balance security risks with business needs and implement solutions that reduce the impact of security exposures which enables you to conduct business with higher confidence.
As workers become increasingly mobile, even just one unsecured laptop can put your entire infrastructure at risk and so IT people are in a great demand to control all the critical elements of Web and data security. Such controls include:

• Who is authorized to access specific Web sites, sensitive content, or applications;
• What data is critically important to your organization and should be protected from accidental or intentional leaks;
• Where to allow users to go online;
• How online resources can be used safely and productively by the business.

Our security solutions provide a complete control over all your web traffic, delivering world-class threat protection. Robust features include user authentication, web filtering, data loss prevention, inspection, and visibility of SSL-encrypted traffic (including the ability to stream decrypted content to an external server with an Encrypted Tap license), content caching, bandwidth management, stream-splitting and more.

Products and Technologies:

• Blue Coat Proxy SG Secure Web Gateway;
• Blue Coat Content Analysis System “CAS”,
• Blue Coat Malware Analysis Appliance “MAA”;
• Blue Coat Director;
• Blue Coat Management Center;
• Blue Coat Reporter;
• Blue Coat SSL Visibility Appliance;
• IBM DataPower Web Security Gateway.

Nile.Com offers solutions that can help you enforce your policies with encrypted traffic, reduce the data security risk of web, cloud and mobile applications, protect privacy, and ensure compliance without sacrificing the scalability and performance end users demand.
Encryption technologies such as SSL and HTTPS are supposed to improve network security. But all too often, they provide a hiding place for advanced attacks.

Today, 35% or more of enterprises’ network traffic uses SSL / TLS encryption. Encryption protects data from being viewed in transit over the Internet—but it also creates a significant blind spot for advanced malware that may passes your security defense layers if it’s unable to inspect encrypted traffic.

We offer serval Encrypted Traffic Management solutions that decrypt SSL and HTTPS traffic and direct payloads of interest to a variety of sophisticated security mechanisms, including Intrusion Prevention Systems (IPS), malware analysis, and Data Loss Prevention (DLP) while avoiding the 30 -80% performance degradation often seen in HTTPS visibility deployments.

Products and Technologies:

• Blue Coat SSL Visibility Appliance;
• Blue Coat Proxy-SG SSL Inspection;
• Blue Coat Encrypted TAP for Proxy-SG;
• Fortinet NGFW SSL inspection.

While financial institutions are racing to provide customers with the most intuitive and satisfying online banking experience, professional cybercriminals are racing to develop ever more sophisticated malware to take full advantage of each new opportunity for online fraud, and Nile.Com helps you adopt anti-fraud solutions that will keep you secured and protected.

Powerful new attack techniques you may well already have experienced in action like; web page infiltration, Fake pop-ups (phishing), transaction tampering. All these techniques begin by uploading malware, usually in the form of Banking Trojans, to your online banking system. And this malware is typically introduced through your system’s most vulnerable point – your customers. The attackers begin by infecting your customer’s own device, then use the customer’s online connection to you as their point of entry.

We offer a fraud prevention solution that helps you keep your users protected & secure – so you can deliver a frictionless user experience, combat more fraud and grow your digital operations – no matter which devices your customers use; includes server side protection; mobile devices, either in cloud or on premises , with client agent or agent less deployment scenarios.

Products and Technologies:

• IBM Trusteer Apex;
• IBM Trusteer Rapport;
• IBM Trusteer Mobile;
• IBM Trusteer Pinpoint;
• IBM Trusteer Mobile Risk Engine;
• F5 Web Fraud Protection;
• HP ArcSight PCI Logger;
• Kaspersky Fraud Prevention.

Today’s attacks are getting more and more sophisticated and complex, this requires in return a more comprehensive approach in how you manage your applications’ security and thus Nile.Com offers solutions that enable organizations to protect their applications from the most advanced threats.

The increasing sophistication, frequency, and diversity of today’s network attacks are overwhelming conventional stateful security devices at the edge of the data center, which is mandating a modern threat mitigation platform to provide a complete protection from the bottom to the top of the network stack.

Using advanced techniques that provide bidirectional protection against malicious sources, DoS attacks and sophisticated threats such as SQL injection, cross-site scripting, buffer overflows, file inclusion, cookie poisoning, and numerous other attack types.

That is why we offer several WAF solutions that enable organizations to protect their apps from OWASP top threats, application vulnerabilities, and zero-day attacks. Furthermore to gain the flexibility they need to deploy Web Application Firewall (WAF) services close to apps to protect them wherever they reside—within a virtual software-defined data center (SDDC), managed cloud service environment, public cloud, or traditional data center.

Products and Technologies:

• Fortinet-FortiWeb;
• F5-BIG-IP ASM;
• F5 Silverline Web Application Firewall (WAF);
• IBM DataPower Web Security Gateway.

ATP solutions will enable you to rapidly block, detect, analyze and respond to advanced malware, other cyber-attacks that target data centers and also today’s indirect threats missed by traditional defenses, across all major threat vectors – network/web, email, and file systems. With its integrated intelligence that helps prioritize threats with rich contextual insights, to stay informed on the threat landscape and the attackers.
We offer Advanced Threat Protection solutions that integrate sophisticated technologies to deliver a lifecycle defense that protects your network against the full spectrum of security threats. This solution safeguards your organization against advanced persistent threats, detects both known and unknown malware, and automates the containment and resolution of incidents that have occurred. This makes it possible for day-to-day security operations and advanced security teams to work together to protect and empower the business.

Products and Technologies:

• FireEye for network and web security;
• FireEye for email security;
• FireEye for file content security;
• FireEye for EndPoint;
• Blue Coat WebThreat;
• Blue Coat MailThreat;
• Blue Coat FileThreat;
• Blue Coat content analysis system;
• Blue Coat malware analysis appliance;
• Blue Coat SSL visibility appliances;
• Solera Networks forensics and incident response products;
• Fortinet Advanced Threat Detection Appliances and Services – FortiSandbox.

Modern digital businesses have a diverse and evolving attack surface. To understand your businesses exposure at any given time you need a comprehensive view of all your vulnerabilities – one that responds to changes in the threat landscape, changes in your environment, and changes in how you categorize risks.

Managing your risk of a breach starts by identifying all the places that are vulnerable to attacks and systematically reducing your exposure. Before you can prevent a breach you have to know all the ways you’re likely to be attacked.

Understanding your business exposure to threats starts with gathering all your vulnerability data from servers, endpoints, mobile devices, and web assets in one place. In order to prioritize what risk to address, you need more data – the context of your controls and configurations program, plus the validation of compliance programs and offensive testing. Providing context makes the data more useful and turns a laundry list of vulnerabilities into something you can prioritize and address.

Our threat exposure management solution gives you the confidence you need to understand your ever-changing attack surface, focus on what matters, and create better security outcomes.

Products and Technologies:

• Rapid7 Nexpose;
• Rapid7 Metasploit;
• Microsoft EMET.

Vendors and enterprises alike are faced with a new e-Mail threat landscape, where spam is increasingly laced with malware and where targeted attacks have become more common and given the fact that E-mail is a business critical service, Nile.Com offers solutions that enables organizations maintain the security and protection of their E-mails.

IT professionals have a lot to consider, both in terms of technology and best practices, as they deal with the growing e-Mail security challenges, and thus we assist them by delivering a proven, powerful messaging security solution for any sized organization, from small businesses to carriers, service providers, and large enterprises.

We offer solutions that provide the flexibility to extend on-premises e-Mail security to the cloud to reduce server load by offloading spam-blocking, virus scanning, virus quarantine, and other security tasks to hosted services on the Internet — helping to free up your IT resources in order to focus on business-related operations.

Products and Technologies:

• Fortinet Secure Mail Gateway-FortiMail;
• FireEye for email security;
• Symantec Email Encryption-PGP;
• Blue Coat MailThreat.

DNS traffic is the back bone of all network communications, and it has massively increased through the past years, and thus it’s a necessity that we offer solutions that will enable organizations to secure their DNS servers by detecting and mitigating any DNS attack.

DNS traffic has increased tremendously with the advent of Web 2.0. The complexity of web applications and mash-ups necessitates 10-50 times more DNS lookups per page than before. In addition, content delivery networks (CDNs) and load balancing technologies depend on DNS to redirect clients to the best content location and therefore expire clients’ DNS caches frequently, resulting in more DNS lookups. Email and anti-spam solutions use DNS lookups heavily. New IP applications including IPTV, VoIP and others have increased the use of DNS.

In addition, DNS is increasingly a target for distributed denial-of-service (DDoS) and other types of cyber-attacks, which can generate huge DNS loads. As a result, service providers must engineer their networks to scale with ever increasing DNS loads in order to maintain adequate performance and security for their subscribers. DNS appliances have emerged as the solution of choice for large enterprise networks to provide highly resilient, high performance DNS solutions.

That is why we offer a secure, carrier-grade DNS solutions that can detect and mitigate DNS attacks, block malware communications, and keep services running—even while under attack. So your brand stays intact and customers stay up and running.

Products and Technologies:

• Infoblox Internal DNS Security;
• Infoblox External DNS Security;
• Infoblox DNS Firewall;
• Fortinet-FortiDNS.

Today’s networks are under tremendous pressures and at the same time users’ expectations for high performance and innovative applications are ever-increasing, this mandates the adoption of solutions that will help organizations ensure security resilience and application performance

The frequency, magnitude, and sophistication of security attacks that your adversaries are launching to attempt to infiltrate your network, steal data, or disrupt operations is ever increasing.

Achieving a secure network that is resilient to attack requires the selection and deployment of security devices such as firewalls, next gen. firewalls and intrusion prevention systems. To meet the expectations for application performance, devices such as load balancers, application controllers and performance monitoring tools should be also deployed in the network.
Network Packet Broker (NPB) is a category of compact, hardware-based devices that offers a new approach for handling and manipulating network packets. NPBs optimize the access and visibility of traffic from one or many network links to monitoring, security and acceleration tools. NPB capabilities include:

• Aggregation of monitored traffic from multiple links/segments,
• Filtering and grooming of traffic to relieve overburdened monitoring tools,
• Load-balancing traffic across a pool of tools,
• Regeneration of traffic to multiple tools.

Products and Technologies:

• Ixia Packet Brokers;
• Ixia Bypass Switches;
• Fortinet FortiTap;
• Fortinet FortiBridge;
• Ixia IxLoad attack;
• Fortinet FortiTester.

Security threats are continually evolving with increasingly complex attacks, including but not limited to blended threats, intrusion attempts, viruses, Trojans, worms, spyware, gray ware, adware, denials-of-service attacks, etc…  which all lead to the inevitable need of a comprehensive capable security solution; Next Generation Firewalls.

Nowadays the implementation and maintenance of security mechanisms is a major challenge. Next-generation solutions must provide integrated multi-layered security services executing on purpose-built hardware accelerated platforms that are dynamically updated and supported by dedicated threat research centers that rapidly respond to new and emerging attacks.

Our high-capacity data center firewall solutions deliver exceptional throughput and ultra-low latency—enabling the security, flexibility, scalability, and manageability required of a data center edge or core platform. Either appliance or chassis-based solutions that combines a high-performance firewall with the flexibility to enable fully integrated UTM personalities (such as VPN, Intrusion Prevention, Anti-malware, Anti-spam and URL filtering)—providing extensive protection profiles for in-depth defense.

Products and Technologies:

• Fortinet-FortiGate NGFW;
• Palo Alto Networks-NGFW;
• Fortinet Internal Segmentation Firewall (ISFW);
• Fortinet-FortiManager;
• Fortinet-FortiAnalyzer;
• HP Tipping Point-NGFW.

Hacking attacks initiated from the inside of a given network by a dissatisfied employee, or by a hacker via an Internet connection, are facts of the IT world, and thus Nile.com offers first class Intrusion Prevention solutions that will help you ensure the security of your business critical services

Most organizations require security solutions to help them protect their network from:

• Internal and external attacks;
• Unauthorized access attempts;
• Misuse or disclosure of confidential data.

While at the same time, allowing network security administrators:

• To provide access controls, alarms, event reporting;
• To eradicate network attacks before they reach critical assets.

Our offering includes several Enterprise Intrusion Prevention solutions that are designed to protect your important IT business resources and sensitive data, that can be installed at the network edge or at the network core to protect critical business applications from both external and internal attacks.

We provide an in-line IPS device that is inserted seamlessly and transparently into the network.

As packets pass through the IPS, they are fully inspected to determine whether they are legitimate or malicious. This instantaneous form of protection is the most effective means of preventing attacks from ever reaching their targets.

Products and Technologies:

• HP TippingPoint NGIPS;
• Fortinet-NGIPS.

Distributed enterprise organizations are using more public cloud services, videos, and mobility to drive business needs—resulting in tremendous growth in network traffic. Therefore, to optimize WAN investments, many organizations are looking for a hybrid approach to WAN connectivity, leveraging both private leased lines (MPLS) and low-cost Internet, without compromising security.

Given the widely distributed nature of many enterprise environments, the ability to quickly provision, scale, and control policy is critical.

Organizations can use the public Internet as the backbone for their communications network infrastructure, achieving global reach and significant cost savings, while maintaining the security of internal communications.

Our solution offering includes WAN and VPN solutions that allow distributed organizations of all sizes to be connected and secured. We offer a fully integrated and complete end-to-end solution for connecting networks and users together, while also detecting and eliminating a wide spectrum of threats and malicious activity.

We offer our customers a broad range of options for establishing VPNs in both major categories by supporting IPsec, SSL-TLS, and L2TP VPN technologies which lower the total cost of ownership, and provides the most possible flexibility.

Products and Technologies:

• Fortinet-NGFW;
• Fortinet-ADC;
• Fortinet-FortiManager;
• Fortinet-FortiAnalyzer.

Solid endpoint protection requires a proactive and complete approach that provides true defense-in-depth and is flexible enough to balance user productivity and convenience together with enterprise security needs, and this is what Nile.Com solutions offer

In today’s economy balancing the ease of doing business with endpoint security is a challenge. Endpoints are no longer bound to an office desk in a controlled environment. Employees are increasingly installing unauthorized and illegal applications on laptops and PCs which can cause increased support calls, performance issues and downtime. And, malware and targeted attacks are on the rise.

Our offering includes end-point solutions to protect your organization against malware attacks before they occur, by proactively controlling the applications executing on your desktops, laptops, servers, kiosks and POS systems. Stopping malware such as: viruses, worms, Trojans, spyware, adware, bots, zero-day threats and root-kits, etc…; Preventing security outbreaks, thus reducing administrative overhead and lowering total costs of ownership for endpoint security.

The solutions adhere to the following concepts:

• Scan for and remove all known malware to establish a clean environment;
• Identify and organize all endpoint applications and executable into predefined management groups;
• Use an application white-list approach to ensure that only authorized and trusted applications can run on endpoints;
• Continue blocking known malware and use behavioral analysis tools to assess new unknown code which may or may not be legitimate;
• Monitor the effectiveness of endpoint security policies in real time and identify potential threats by logging all application execution attempts and recording all policy changes and administrator activities;
• Report/Demonstrate policy compliance and ensure software license compliance by drilling down on suspicious behavior for security or legal follow-up;
• Report on malware prevention and remediation on behavior of unknown or suspicious code and on current threat levels.

Products and Technologies:

• Symantec Endpoint Protection;
• Heat Endpoint Management security suite;
• Lumension Endpoint Security;
• FireEye HX for Endpoint;
• Microsoft System Center Endpoint Protection;
• Fortinet-FortiClient;
• Fortinet-FortiManager.

The numbers of users, devices and apps are significantly expanding nowadays, and since Wi-Fi is the preferred access method, Nile.Com offers secure, enterprise-class Wi-Fi that delivers a superior experience for all users and devices.

Our offering combines high-performance Wi-Fi with advanced security to protect organizations against cyber security threats and data breaches at the wireless access layer, as well combined with management wireless controllers to optimize traffic across wireless access points and client devices to provide high performance and predictability while addressing enterprise demands for wireless connectivity.

We offer the industry’s most comprehensive secure access portfolio with the enterprise performance, control and scalability you need.

Products and Technologies:

• Fortinet Wi-Fi Access Points;
• Fortinet Cloud Wi-Fi;
• Fortinet Infrastructure Wi-Fi Controllers;
• FortiGate NGFW Integrated Wi-Fi Controllers.

Mobile productivity is no longer a luxury—it’s fundamental to support a happy and productive workforce, accordingly Nile.Com offers solutions that help organizations deliver any app on any device while meeting the security and compliance requirements.

As employees increasingly expect to be able to work from anywhere, on any device, your organization must move beyond the constraints of fixed locations and standard PCs to enable new freedom and flexibility in the way people work. Enterprise mobility management solutions allow your organization to securely provide access to the apps and data people need to do their jobs effectively no matter where they are or what devices they use.

Security is often the first reason IT pros look for a mobility solution, but workforce productivity is equally important. The key is to make the right applications available on mobile devices—and avoid the temptation for people to seek unmanaged workarounds that put the organization at risk.

Products and Technologies:

• Citrix XenMobile;
• Citrix XenMobile Enterprise Mobility Management;
• IBM Fiberlink Maas360;
• Microsoft Enterprise Mobility Suite.

Events and Logs are key information for supporting the organization’s health and performance investigations, and this Nile.com offers solutions that help ensuring that those records are stored in sufficient details for an appropriate period of time to be used as per the organization’s requirements.

Routine log reviews and analysis are beneficial for identifying security incidents, policy violations, fraudulent activity, and operational problems shortly after they have occurred, and for providing information useful for resolving such problems.

Logs can also be useful for performing auditing and forensic analysis, supporting the organization’s internal investigations, establishing baselines, and identifying operational trends and long-term problems.

That is why we offer the most comprehensive Security Information & Event Management (SIEM) solutions that enable cost-effective compliance and provides advanced security analytics to identify threats and manage risk, so you can protect your business.

Products and Technologies:

• IBM QRadar;
• HP ArcSight;
• Fortinet FortiAnalyzer;
• Fortinet-FortiMonitor;
• SolarWinds Log and Event Manager.

Every day network becomes more complicated and distributed among different datacenters, Branches and remote offices, and so we at Nile.com work with the leading vendors in Network monitoring solutions to provide our customers with the ability to well monitor and manage their network.

Network performance and availability monitoring becomes more and more difficult and needs specialized tools that can

• Monitor network availability and performance
• Monitor the travelling traffic categories
• Monitor WAN links availability and performance
• Display network diagrams and MAPs to simplify alerting and monitoring
• Maintain configuration backup and monitor configuration changes

To enable us to do so, Nile.Com offers advanced Network Management and Monitoring solutions based on the below products;
Products and Technologies:

• SolarWinds Network Performance Management;
• SolarWinds Network Configuration Management;
• SolarWinds NetFlow Traffic Analyzer;
• Infoblox Automation Change Manager
• InfoBlox NETMRI.

Your security program needs to keep you steps ahead of cyber threats, prevent cyber criminals from stealing assets and disrupting services, troubleshoot access and availability issues in record time with a complete map of the entire network topology to visualize problem areas and identify gaps, and that is why we offer the most comprehensive and effective solutions for firewall audit and change management to meet these goals.
If you are tasked with configuring your firewalls, there are few the questions that need to be asked;

• Is your network security policy properly enforced by each firewall?
• Which firewall rules are not used and therefore can be eliminated?

Analyzing dozens of firewalls for rule conflicts or potential security gaps is no easy matter and thus regular firewall audits are necessary to keep firewalls secure, compliant with policies, and operating at peak performance.

This is why Nile.Com work with the below vendors to offer you the most reliable Audit and Change Management solutions;

Products and Technologies:

• Skybox Firewall Assurance;
• Skybox Network Assurance;
• Skybox Vulnerability Control;
• Skybox Change Manager;
• Firemon Firewall Management;
• Quest Change Auditor for Active Directory;
• Quest Change Auditor for File Servers.

Our security analytics solutions identify security policy breaches and inappropriate access of services to improve user awareness and education to promote a culture of security among all employees by implementing non transparent controls, enforcing a better business practices concerning the handling and transmission of sensitive data and identifying possible data theft or leakage with a primary value proposition of changing user activity

Build a workplace compliance reporting solution with continuous audit at the endpoint, identify activity changes with early detection (Who, What, When and How) of which activity has changed, fast resolution with enterprise-wide real-time analysis of security incidents. Detect security threats in real-time with alerting on unblocked malware, unauthorized or unknown software, unusual route, unusual traffic to external perimeter or critical servers, unauthorized access, and unusual activity compared to similar roles in the same department (user profile), identify threats proactively with future protection scenarios based on precise and contextual insight of unusual patterns.

We have a special focus on the end-user IT analytics across all endpoints, users, applications and network connections, all the time, in real-time. That utilizes self-learning, mapping and patterns to understand how all applications and services are delivered to the end-user’s (physical and virtual) endpoints including quality of service, compliance metrics and security threats. For depth in defense security it provides an additional safety net for end-user and endpoint security. IT departments use this enterprise-wide solution with real-time analytics to detect non-compliant and unusual activity, which represent possible security threats and risks.

Products and Technologies:

• Nexthink End-user Analytics;
• Microsoft Advanced Threat Analytics;
• Fortinet-FortiMonitor;
• HP ArcSight Analytics;
• Blue Coat Security Analytic Platform “Solera Networks”.