We undertake a wide range of services around IDS and IPS, from product selection, requirement capture, through to false positive reduction and tuning. We are happy implementing products and even monitoring them.
Services around IDS and IPS are some of our oldest offerings which we have seen evolve since the late 1990's. Our staff deployed the first Network IDS in use by the UK MOD 20 years ago and later installed Europe's largest IPS deployment with well over 1,000 sensors.
Such is the breadth and depth of our knowledge on the subject, that our staff are regularly flown around the World by the vendors, to speak at conferences and advise on how to help improve the products and define their product roadmaps.
Open Source IDS:
We are also extremely adept at deploying and configuring many of the open source sensors such as Snort, Suricata and Bro and have spoken at conferences about how to configure several commercial IDS to deploy Snort signatures. We have also spoken about how to conduct advanced tuning on commercial IDS in order to turn on prevention without impacting service.