TECHNOLOG

BEYOND

SUMMIT TECHNOLOGY SOLUTIONS

Security Portfolio and
Capabilities
  STS Cyber Security Proposition Framework
Agenda  Leading Security Vendors Partnerships
 STS Cybersecurity Fixed Team Structure
 STS Professional Services Capabilities and
Certifications
 STS SOC Methodology and Framework
 STS SOC Technology , Advantages & Deliverables
 STS SOC – Team Structure, Roles , Responsibilities &
Qualifications
 STS SOC – Team Structure, Roles , Responsibilities &
Qualifications
 STS Cybersecurity and SOC References
 STS Cyber Security Proposition Framework

Cyber Security
The application of technologies, processes, and controls to protect systems, networks, programs, devices and data
from unauthorized exploitation and attacks.

Information Security Network Security

Information Security Analysis and Designing and Implementing the

SOC operation Technology Infrastructure to protect
the client’s environment against
unauthorized exploitation of systems,
networks, and technologies.

STS Team is Structured to Address the above two Pillars

SOC Infosec Team Technology PS Team
 STS Cyber Security Proposition Framework
Security Operations & Intelligence
Security
Services Technology AI Threat Intelligence Awareness

Consultation Infrastructure Security

Network Data Centre Application Users
Defence & Cloud and Data and Devices
Implementation
Perimeter Security DLP
E-Mail Security End point security & XDR

Supports & SLA Sandboxing Database Security Web Application FW Patch Management

Network Access Control Web/URL Filtering Vulnerability Scanning IAM

Managed Services

OT Security Cloud Infrastructure Security App. Security testing Encryption

A Powerful Certified Delivery Team

Leading Security Vendors Partnerships

Security Operation
and Intelligence

SIP Security

Network and Endpoint

Datacenter &
Identity Edge to Cloud Security
Management

Application and Data

 STS Cybersecurity Fixed Team Structure

Cyber Security
Team

Professional SOC Team

Services Team 5 Sec. Eng.

Presales Team Post Sales Team

2 Sec. Eng. 6 Security Eng.
+ 2 Under Hiring
 STS Professional Services Capabilities and Certifications

NGFW NGIPS WAF SIEM Web DNS

Technology Technology Firewall Solutions Security Security

Professional Skills Professional Skills Professional Skills Professional Skills Professional Skills Professional Skills
 Cisco ASA,  F5 ASM.  ForcePoint Web  Infoblox DNS
 Cisco Sourcefire.  IBM Qradar.
 Cisco Firepower.  FortiWeb. Security Firewall.
 TrendMicro  FortiSiem.
 FortiGate.  Barracuda.  Cisco WSA
 Tipping Point.  Microfocus ArcSight
 Force Point.  Splunk
 PaloAlto

Certifications Certifications Certifications Certifications Certifications Certifications

 Cisco CCIE Security.  Fortinet NSE5 FortiSIEM
 Cisco CCIE Security.  Fortinet NSE6  Forcepoint WSGA.  Infoblox CDCA.
 Cisco CCNP  ESM320 - ArcSight ESM
 Barracuda Web  Cisco CCIE Security.  Infoblox CDAT.
 Fortinet NSE4, NSE5 Advanced Analyst
 PaloAlto ACE, PCNSE  IBM Qradar SIEMv7.3.2

Summit Technology Solutions

 STS Professional Services Capabilities and Certifications- continued

Security
Mail Security
End-point NAC and Vulnerability Security
Security Management
Security Access Scanner Sandbox
Gateway
Control

Professional Skills Professional Skills Professional Skills Professional Skills Professional Skills Professional Skills
 TrendMicro.  Cisco ISE.  Open VAS.  Forti Sandbox.
 FortiMail.  FortiManager.
 Kaspersky.  Aruba ClearPass.  Tripwire IP360.  Trend Micro Deep
 Cisco ESA.  FortiAnalyzer.
 Cisco AMP.  Forti NAC  Nessus Discovery (DDAN)
 Barracuda.  Cisco FMC.
 Symantec  Symantec.

Certifications Certifications Certifications Certifications Certifications Certifications

 Cisco CCIE Security.  Cisco CCIE Security.  Cisco CCIE Security.  Cisco CCIE Security.  Tripwire Enterprise  Fortinet NSE7.
 TrendMicro Hybrid  Fortinet NSE6  Fortinet NSE4, NSE5,  Fortinet NSE5 Foundation and  TrendMicro Hybrid
Cloud Security.  Barracuda Email. NSE7. Advance Cloud Security.
 Aruba ACDP

Summit Technology Solutions

STS Professional Services Capabilities and Certifications- continued

Load Infosec
Balancers Certifications

Professional Skills
 F5 LTM.  SANS GCIA
 Barracuda ADC.  Elearn Security Malware Analysis
 Forti ADC. Professional
 SANS GCIH
 Certificate of participation Security
Incident First Responder training
 ISO 27001 Lead Implementer
Certifications Certification
 eLearn Security Junior Penetration
 Fortinet NSE6 Tester (eJPT) v1.0
 Barracuda ADC  EC-Council Certified Security
Analyst (ECSA) v10
 Certified Ethical Hacker (CEH) v10

Summit Technology Solutions

STS SOC Methodology and Framework
STS SOC Technology
 STS SOC Technology-FortiSIEM Advantages

Built in rules, reports and dashboards that can be copied or edited.

Auto and manual network and asset discovery.
Health and performance monitoring.
FortiSIEM
Advantages Automatically generating asset inventory.

Event Correlation.
Able to perform field based search and keyword search.
Built in case management system.
Incidents are mapped to Mitre attack framework.
 STS SOC Technology-Deliverables

24/7 Monitoring and Analysing Logs Identifying Incident Scope

Identifying Security Incidents Incident Containment

Security Incident Investigation Incident Eradication

Security Incident Root Cause Analysis Evaluate business Impact

Threat Hunting & IOC Reporting

 STS SOC – Team Structure, Roles , Responsibilities & Qualifications

Professional STS Focal SOC SOC SOC

Services Team Contact Point Tear1 Team Tear 2 Team Supervisor

Eye on screen by
Facilitate Threat Hunting & IOC
responding to opened
SOC Systems & Solution communication with tickets and security risk Security Incident
Lifecycle customers incidents. investigation
Use Case design
SIEM/Tools
Administration Inform customers IT Initial Threat Analysis Evaluate Impact
Validate escalations
Team to preform
Mitigation tasks
Management Sensor Root Cause analysis Manage incident
(Log Sources) Tuning False Positive to closure
Ensure deployment of response
mitigation tasks Suggest actions to
Deployment & ·Delivering SOC reports resolve incidents
Integration Service to customers Security Incident Ticket
creation Malware Analysis
Management
False Positive to closure
Document and transfer
Scripting & Automation customer needs to SOC
Build/Deploy Escalate to Tier2 Escalate to SOC Forensic Investigation
Team
Supervisor
 STS SOC – Team Qualifications

SOC SOC SOC

Tear1 Team Tear 2 Team Supervisor

GCIA, GCIH,
6-12 months Masters in Cisco Cyber 2 years of CEH, CHFI, 5 years of ECMAP, SIEM
experience Cybersecurity OPS experience ECIH experience advanced
analyst
 STS Cybersecurity and SOC References

Presidency TRD

Port Said Tunnels

Commercial References

Summit Technology Solutions

SUMMIT TECHNOLOGY
SOLUTIONS