Information Security services
The dynamic nature of security threats, the increasing complexity of information security infrastructure, regulatory compliances and the need for strong domain skills are driving more and more organizations to outsource their information security management to a trusted service provider. The challenge of the service provider lies in delivering a comprehensive managed security program that not only addresses the technological needs of the customer, but also addresses the real issue of alarming increase in security administration over head and cost of compliance and maximizing return on investments.

Sify’s offerings
Sify’s Enterprise Security services offerings are primarily based on the Information Assurance Framework shown here. The IAF approaches IA as a life cycle of continuous process and technology improvements and consists of a set of modular solutions that fall into one of the five areas
• Management
• Operational
• Personnel
• Physical
• Technical

Managed Security services
Managed Security Services (MSS) is a systematic approach to managing an organization's security needs. The services can be offered in- house or they can be outsourced to a service provider who specializes in network and information system security. The functions of a Managed Security Service include round-the-clock monitoring and management of intrusion detection systems and firewalls, overseeing patch management and upgrades, performing security assessments and security audits, and responding to emergencies.

Key Pain Areas that MSS Addresses

A driving need for improved data protection and activity monitoring capabilities– Attacks now are often either higher in the stack (attacking the application) or lower in the stack (attacking the drivers). The threat is more internal than external.
Business model changes - The increased use of service providers, strategic outsourcing and business process outsourcing means that enterprises need to find ways to ensure the security of IT infrastructure, operations and applications that are not under their direct control. Security service providers must also decide on the appropriate use of security services.
Security spending does not necessarily provide improved security – This is especially for SMBs. Though SMBs are exactly the same as larger counterparts — same industries, same priorities, same target customers — they have far fewer resources.
"Operationalize" routine and mature security processes: Make a clear distinction between IT security, which remains a strategic discipline, and routine IT operations as an external service provider can help in this process.
Regulatory Issues: The effects of regulatory and stakeholder pressure, and constrained IT security resources make outsourcing security an attractive option.
Compliance Issues: Compliance regimes, such as the Health Insurance Portability, Accountability Act and the Payment Card Industry Data Security Standards are moving downstream, and outsourcing security will help develop processes and reports that help meet regulatory standards and demonstrate compliance to auditors.
Resource Challenges: Personnel - quantity, quality, diversity and 24 X 7 coverage.
Capital Budget.

Inhibiting Factors
The access and manipulation of sensitive corporate data while away from company premises, especially by non-employees, is always a risk. The growing variety, complexity and number of outsourcing and third-party arrangements create an increasing challenge for security managers. Thus, there will always be a reluctance to outsource the function to other external vendors.

Sify Managed Security Services
Sify Managed Security Services offer End-to-End Security Management services that help customers to:
• Proactively secure information assets and preempt security threats
• Get 24x7 managed security for local networks, and mission critical assets with guaranteed SLAs
• Ensure availability of critical systems and protect information assets more effectively through actionable security intelligence

Sify MSS Key Features
Performance-based Service Level Agreements (SLAs)
Advanced platform support
Expert management
MSS Customer Portal
Reporting
24 x 7 Help Desk

Sify SOC (Security Operations Center)
A Security Operation Center creates a platform that provides detection and reaction services to security incidents. These are highly secure environments with biometric access and surveillance cameras in place. The Security Operation Centers are monitored to detect risk and  vulnerabilities at all times.

Sify’s Security Operations Center uses CPE management tools and the world’s leading SIM tools to help monitor customer devices.
Sify’s home grown service delivery portal, iONi, gives customers transparency over the operations and gives them up-to- date information on the underlying security services. It is manned by certified experts.

Sify’s SOC Building blocks

Service Tools
Security Information Management Tools
Device Management Tools
Vulnerability Assessment Tools

Service Management
Sify iONi – Service Portal
24 x 7 Help Desk
Security experts

Best Practices
ITIL
ISO 27001
COBIT

Service Tools
Security Information Management Tools (SIM Tools):
Log activity reveals changes in a system, including when viruses or other malware try to gain entry. However, IT managers must be quick to analyze the data and pinpoint problems.
Security Information Management Tools help them make sense of the network's log data.  Using SIM technology, various logs are collected and then analyzed by a correlation database. Data that appears to be an actual or potential problem is then sent onto a console, where IT managers can decide on a course of action.
Sify has a partnership with Net Forensics and uses its SIM Tool nFX SIM One. This tool can
o Identify emerging or latent threats across the IT functions of an enterprise.
o Multiple Correlation Technologies ensure that threats are identified rapidly
o Rules-Based Correlation
o Vulnerability Correlation
o Statistical Correlation
o Historical Correlation
o Utilize a fully integrated incident remediation workflow to ensure that incidents are handled with best practice guidance.
o Streamline your compliance strategy by implementing highly effective processes for maintaining and proving compliance.
o Leverage powerful patented SIM technology that's easy to deploy, use, and manage.
o Cost-effectively scale your solution, so you can expand your security compliance management strategies as your business grows.

Sify provides the following through Net Forensics
Event monitoring
o The security devices will be monitored for all security events through the Netforensics Agent.
Centralized monitoring of security devices
o Security and Event Logs monitoring
o Usage Statistics Monitoring
o Network Utilization Monitoring
o Users Login Monitoring
o Input and Output packet discards

Event correlation and real time alerting
o All the security events after normalization will be correlated using Correlation Algorithms through NetForensics.
o Immediate alerts will be provided on all critical security incidents.

Sify’s Offerings
Sify can offer managed security services in two flavors

End to End Managed Security Services
Sify owns the SIM tool and monitors a customer’s network through its remote SOC. Here, Sify’s Security Operation center sits at the remote center and the SIM tool generates all the correlated information through logs available across all devices in the CPE. Monitoring and management is done at Sify’s SOC. The SIM tools are charged per license.

Benefits
o Cost of tool and service are bundled, reducing the total cost of ownership.
o Cost benefits of off-shoring to India.
o Sify will ensure the customer’s information is completely protected.
o Sify’s service portal iONi (integrated with the SIM tool) can help in full transparency. The customer will always have a feeling of being in control.
o Sify can help in generated compliance related reports at a much faster time with its vertical focus on various compliance related services.