Security Services

The devices that people use to connect to your corporate network (including devices operated by remote users) are secured by a range of protect and respond functions. Syntax has designed its robust MDR (Managed Endpoint Detection and Response) solution to enhance monitoring of devices for security-relevant activities with proactive threat hunting. The entire solution can be integrated with other security infrastructure and provides three key benefits: 

• Simplified threat detection and elimination using best-in-breed technologies combined with the expertise of the security specialists at the Syntax SOC 

• Optimum security efficiency with Alert Mapping within the MITRE Adversarial Tactics, Techniques and Common Knowledge (ATT&CK™) Framework 

• Reinforcement of other elements of this pillar to block malicious activities before they even attempt to connect 

This pillar is designed to create a Zero Trust Network Architecture (ZTNA) – an encrypted end-to-end secure tunnel, for secure user access to all your on-premises, SaaS and web applications that allows you to: 

• Eliminate lateral movement possibilities from connection through application thus minimizing exposure by shrinking your attack surface, including to internal risks. 

• Allow the ability to scale Zero Trust effortlessly, by protecting critical applications or highest risk user groups first, then expanding internet-native ZTNA to your entire operation. 

• Foster a stronger employee experience by allowing teams to securely communicate and collaborate while facing fewer security gateways that might get in their way. 

This third pillar of Syntax’s cybersecurity services is designed to address potential risks that might target your operating system layer.  For this pillar, Syntax integrates the continuous and always-on industry-leading technologies so you can get service delivery that is highly customized to accommodate your constantly evolving IT environment to support:

• Near real-time response protocols that may include the most relevant superseding patch, quarantines covering your priority systems, servers, assets and/or files, uninstalling software, killing any process or network connections, and much more.
• Automated and integrated gathering and analysis of IT, security, and compliance data in a scalable, state-of-the-art backend.
• Customizable surveillance capabilities via Elasticsearch clusters, enabling visibility within seconds of any asset, including on-premises, endpoint, and cloud assets.

Consolidated SIEM (Security Information and Event Management) and SOAR (Security Orchestration, Automation and Response) functions form the fourth pillar of our security posture. These manage all security information and present forensic data when security events occur. You can also generate individually customised reports tied to your business metrics and KPIs covering a range of vital activities: 

• Detailed analyses in SIEM format of data from devices, nodes, endpoints, event logs and other relevant sources, to provide a systematic, consolidated overview 

• Use of SOAR elements to bring together and analyse input from across the entire threat landscape using ML (machine learning) models 

• Automation of routine administrative tasks allowing the Syntax SOC team to concentrated on higher-level analyses, ensuring that new, particularly sophisticated threats are not overlooked