Defense Security
Enterprise Computer Network Security Architecture Design, Engineering, and Management
Harris Corporations’ Crucial Security provides security operations center (SOC) certified and accredited security architecture solutions for federal, state, department of defense and national intelligence organizations. Our solutions fulfill specific security compliance requirements as applied to organizational needs and national security mandates. Crucial Security designs integrate leading edge security technologies into existing and new networks for preempting compromise as well as provide documented processes and procedures that accompany architectural security system designs with complete turn-key solutions.
Advanced Intrusion Detection/Protection Traffic Analysis Tactics, Techniques, and Procedures (TTP)
Founded on communications and non-communications traffic analysis techniques for conducting link and nodal analysis, Crucial Security reconstructs threat based reconnaissance, attacks, and exploitations against critical U.S. topologies. We employ advanced traffic analysis TTP for back tracking threat patterned activities to threat relationships found between seemingly dissimilar or unassociated TCP/IP events. Crucial Security incorporates state of the art processes and procedures for isolating and identifying scope and scale of threat activity from very large data sets; quickly Identifies new threats from within data repositories by joining advanced traffic analysis TTP with cutting edge visualization technologies; and finds and mitigates both insider threat and external state driven exploitation.
Indications & Warning (I&W) Computer Network Perimeter Protection Alerting and Mitigation
Crucial Security is a technology leader in developing “Indicator Profiling” methodologies, processes and tools for building intrusion detection signatures to identify hidden stealthy “low-slow” infiltration activities performed over extended periods of time to evade detection. To accomplish this, we incorporate relational and pattern analysis with event sequencing and schedule analysis frameworks for finger printing threat entities characteristics. We also develop I&W templates from indicator profiles for strengthening external and internal perimeter defenses across the enterprise. Further, we attribute current successes to the use in testing US DOD IO reconnaissance, attack, and exploitation methodologies, processes, and tools.
Advanced Computer Network Threat and Vulnerability Profiling for Critical Infrastructures and Key Personnel
Crucial Security provides full service capability for mitigating threat and vulnerabilities as applied to critical information system architecture topologies, technologies, and high profile staff. We apply relational and patterned analysis methodologies against the enterprise business structure to identify and associate high value targets specific to external and internal threat targeting.
Network Security Compliance Monitoring, Management, and Insider Threat Monitoring, Analysis, and Mitigation
As part of intrusion detection advanced perimeter defenses, full content monitoring tracks sensitive data at rest and in transit across internal and external facing networks. Full content monitoring also provides immediate insight to motive and intent of external and internal threats. Content monitoring is incorporated into overall security defense operations that provide detailed insight for decision-making processes and procedures. Executives and senior leadership are provided with detailed insight into their infrastructure for quickly reacting to potential threats based on an integrated view from a consolidation of intelligence coming from indications and warning (I&W) indicator profiles, threat and vulnerability profiles, and knowing what people are doing and where their data is at a moment’s notice.
Advanced Network Security Certification and Accreditation (C&A) Processing and Integration into Security Defense Operations
Up until now IA, IO, and IC has maintained a deliberate separation and independently processed and analyzed their own data sets. Today important pieces of the puzzle are joined in a consistent manner using defined repeatable processes for showing the big picture. As part security defense operations, C&A security risk assessments, system security plans (SSP) and other related C&A plans are incorporated into security defense operational databases. Advanced analysis tactics techniques and procedures draw from these databases for quickly drawing an accurate picture of threat activities. Crucial Security maintained C&A documentation provides critical insight to system vulnerabilities, sensitivity, and operational criticality. Standard C&A assessments, recertification, and maintenance are also provided as of overall security services and solutions.
Supporting Infrastructure Communications and Facility Security Services and Integration into Security Defense Operations
Equal to the important role network C&A integration into security defensive operations, physical security SCIF C&A documentation, facility access control data, COMSEC information is maintained in security defense databases. Data and documentation is used in operational analysis facility security officers (FSO) working in concert with Chief Security Officers (CSO), Chief Information Security Officers (CISO), Information System Security Managers (ISSM) Information System Security Officers (ISSO), Security Engineers and Information Assurance (IA) Engineers and analysts for maintaining a minute-by-minute detailed view into the enterprise security posture. Standard FSO, ISSO, COMSEC Custodian services are also provided to ensure quality of security services across the enterprise.
For more information on Crucial Security’s products and capabilities, please email: infocrucial@harris.com or call 703-961-9456 Ext. 7.
