Intrusion Detection and Prevention Systems (IDS & IPS)

Inspecting network traffic to identify suspicious activity.

Service Overview: 

Intrusion Detection Systems (IDS) and Intrusion Prevention Systems (IPS) inspect network traffic to identify suspicious activity, they can operate as standalone products or can be integrated into Next-Generation Firewalls. Despite their technology being 20 years old, they still perform a pivotal role in being the eyes and ears of monitoring.

Services around IDS and IPS are some of our oldest offerings which we have seen evolve since the late 1990's. Our staff deployed the first Network IDS in use by the UK MOD 20 years ago and later installed Europe's largest IPS deployment with well over 1,000 sensors.

Such is the breadth and depth of our knowledge on the subject that our staff are regularly flown around the World by the vendors to speak at conferences and also to help improve the products and define the product roadmaps.

We are also extremely adept at deploying and configuring many of the open source sensors such as Snort, Suricata and Bro and have spoken at conferences about how to configure several commercial IDS to deploy Snort signatures and also how to conduct advanced tuning on commercial IDS in order to turn on prevention without impacting service.


Service Details: 

We undertake a wide range of services around IDS and IPS, from product selection, requirement capture, through to false positive reduction and tuning. We are happy implementing products and even monitoring them.

Services around IDS and IPS are some of our oldest offerings which we have seen evolve since the late 1990's. Our staff deployed the first Network IDS in use by the UK MOD 20 years ago and later installed Europe's largest IPS deployment with well over 1,000 sensors.

Such is the breadth and depth of our knowledge on the subject, that our staff are regularly flown around the World by the vendors, to speak at conferences and advise on how to help improve the products and define their product roadmaps.


Open Source IDS: 

We are also extremely adept at deploying and configuring many of the open source sensors such as Snort, Suricata and Bro and have spoken at conferences about how to configure several commercial IDS to deploy Snort signatures. We have also spoken about how to conduct advanced tuning on commercial IDS in order to turn on prevention without impacting service.

Want to book a service?
See a job opening you like?
Want something bespoke?

© Computer Network Defence Limited 2019