Network Security and Compliance

Progent's ProSight Active Security Monitoring services incorporate behavior-based detection technology from SentinelOne to provide endpoint and server protection from modern malware attacks such as ransomware, which have demonstrated the ability to evade legacy, signature-based anti-virus defenses. ProSight ASM gives small and mid-sized organizations access to the same threat protection platform used by leading enterprises including Walmart, Netflix, Visa, Citi, NASDAQ, Salesforce and others. By delivering real-time threat prevention, detection, removal and recovery in one unified package, ProSight ASM cuts ownership costs, simplifies management, and speeds up recovery. SentinelOne's next-generation endpoint protection (NGEP) technology used by ProSight ASM was rated by Gartner Group as the most visionary Endpoint Protection Platform in the industry. Progent is a SentinelOne Partner, reseller, and integrator.

Progent's ProSight Active Security Monitoring services utilize a low-overhead agent installed on each protected endpoint and server to build a cohesive security grid that responds to threats at machine speed and allows coordinated and decisive incident response featuring:

• Protection for Windows, Mac OS X and macOS, Linux, iOS and Android endpoints and servers
• Support for Windows Hyper-V, VMware vSphere, and Citrix XenServer virtual environments
• Deep system-level monitoring
• Signature-less machine learning and intelligent automation
• Behavioral analysis and detection of advanced attacks across all vectors
• Full remediation with auto-removal of detected attacks
• Single-click rollback from ransomware and other attacks
• Automatic, network-wide immunization
• Real-time visualization of the attack storyline for comprehensive forensics
• Unified control via a single management console
• HIPAA and PCI certification

Progent offers ProSight Active Security Monitoring as a low-cost, flat-rate monthly service. A software-only EPP solution, ProSight ASM requires no special hardware or other costly upfront investment. ProSight ASM can provide protection for both on-premises and cloud-based resources. In the event that you suffer an attack, Progent is qualified to act as your red team to help you use ProSight ASM to contain and remove the threat, assess the damage, rollback your network to a healthy state, and understand the source and spread of the malware.

ProSight Active Security Monitoring and the Modern Threat Landscape
97% of data breaches could have been prevented by current security technology, but some successful attacks are inevitable. Sometimes the crooks win. ProSight Active Security Monitoring is designed around the premise that even with the best security technology, you may eventually suffer a breach. For this reason ProSight ASM not only provides malware blocking based on traditional static, signature-based prevention, but also dynamic detection of malware and exploits that have penetrated your network, fast isolation of infected devices, automatic removal of threats, near real-time immunization of all endpoints, single-click recovery (such as a rollback to a pre-ransomware state), and rich forensics to help you understand and eliminate your vulnerability.

By offering best-of-breed technology for before, during and after an attack, ProSight ASM delivers an end-to-end solution for addressing the realities of the modern security landscape and minimizing or eliminating financial, productivity and reputation loss in case of a breach.

Endpoints are the most vulnerable and most frequently targeted component of an information network. ProSight Active Security Monitoring services offer a single, integrated platform to manage the entire threat lifecycle including protection, detection, response and remediation. Threats addressed by ProSight ASM include:

• File-based malware such as ransomware, trojans, worms, backdoors and payload-based attacks
• File-less and memory-only malware with no disk-based indicators
• Document-based exploits embedded in Office and Adobe files, and macros
• Phishing and spear phishing emails (which account for over 90+ of successful data breaches)
• Browser-based attacks rooted in drive-by downloads, Flash, Java, Javascript, VBS, IFraME.htmL5, and plug-ins
• Live attacks based on scripts like PowerShell, Powersploit, WMI, and VBS
• Credential-based attacks including credential-scraping, Mimikatz, and tokens

Prevention: Before the Attack
With nation-state intelligence agencies joining the ranks of professional and amateur hackers, new malware is being developed far faster than the ability of anti-virus providers to write new signatures. The limitations of signature-matching endpoint protection has been recognized since around 2012 and its inadequacy is now an accepted tenet of IT security.

ProSight ASM utilizes low-overhead cloud intelligence and reputation services from multiple vendors to filter known malware. Deep file inspection plus dynamic blacklisting and whitelisting help make ProSight ASM a significant improvement over legacy anti-virus platforms, but prevention is only the first line of defense. Advanced exploits, file-less malware and script-based attacks can sneak past signature-matching barriers. For example, so-called "packers" compress code to disguise malware data so it can't be read by security researchers or malware blocking programs.

Detection and Response: During the Attack
The second phase of endpoint protection involves dealing with malware while it is executing. ProSight ASM uses next-generation endpoint protection (NGEP) technology to detect malicious behavior from any malware that gets through the automated blacklisting process. Even in the case of advanced file-less malware such as application and memory-based attacks, the malicious code must perform certain recognizable activities (e.g., creating an executable file without permission) if it is to compromise data. ProSight ASM's lightweight agent watches all activity in each protected endpoint and uses state-of-the-art behavioral threat analysis and full execution context to identify new attacks at inception. When an attack is discovered, ProSight ASM immediately disconnects the affected device from the network to contain the threat. Because the ProSight ASM agent is autonomous, devices stay protected even when they are not connected to the Internet.

Remediation: After the Attack
Once an attack is contained, ProSight ASM begins policy-based remediation. When you use ProSight ASM in conjunction with Windows Volume Shadow Copy Service, modifications to data made by the malware attack can be rolled back automatically with a single click. ProSight ASM also logs whatever system-level files and settings were changed by the attack and what were remediated. Whenever ProSight ASM detects a new malicious binary, the threat is flagged and all protected agents on the network are immediately immunized against the attack. In addition, the ProSight ASM management console provides in-depth forensics, which include a clear visualization of the attack's progress through the network from inception to termination. This real-time audit trail of what happened during the attack exposes weaknesses that need to be addressed in your security strategy and answers questions like: How did the attack enter our network? Which employee or guest opened the malware file? What did the malware change on our network?

Download the ProSight Active Security Monitoring Datasheet
To download a PDF datasheet describing the key features of ProSight Active Security Monitoring, click:
Progent's ProSight Active Security Monitoring Services Datasheet. (PDF - 89 KB)

Other ProSight Managed Services Available from Progent
In addition to ProSight Active Security Monitoring, Progent's ProSight suite of network management services includes other budget-friendly, flat-rate managed services that address key aspects of your IT network including backup and disaster recovery, network infrastructure monitoring and management, and email content filtering. By partnering with some of the industry's most innovative technology vendors, Progent can offer small and mid-size organizations the benefits of the same advanced technology used by the world's largest enterprises. Managed services offered by Progent include:

• ProSight LAN Watch: Server and Desktop Remote Monitoring
  ProSight LAN Watch is Progent's server and desktop monitoring service that uses advanced remote monitoring and management (RMM) techniques to help keep your network operating efficiently by checking the state of vital assets that power your business network. When ProSight LAN Watch uncovers an issue, an alert is sent immediately to your specified IT personnel and your Progent engineering consultant so all potential issues can be resolved before they have a chance to impact productivity. Find out more about ProSight LAN Watch server and desktop remote monitoring services.

• ProSight LAN Watch with NinjaOne RMM: Centralized RMM Solution for Networks, Servers, and Workstations
  ProSight LAN Watch with NinjaOne RMM software offers a unified, cloud-based solution for monitoring and managing your client-server infrastructure by offering tools for performing common tedious jobs. These include health monitoring, update management, automated repairs, endpoint configuration, backup and recovery, A/V response, secure remote access, standard and custom scripts, asset inventory, endpoint status reporting, and debugging assistance. If ProSight LAN Watch with NinjaOne RMM spots a serious incident, it transmits an alert to your designated IT personnel and your Progent technical consultant so that potential issues can be taken care of before they impact your network. Learn more about ProSight LAN Watch with NinjaOne RMM server and desktop remote monitoring consulting.

• ProSight WAN Watch: Infrastructure Remote Monitoring and Management
  Progent's ProSight WAN Watch is an infrastructure monitoring and management service that makes it easy and affordable for smaller businesses to map out, monitor, reconfigure and debug their networking hardware like routers and switches, firewalls, and access points as well as servers, endpoints and other networked devices. Incorporating cutting-edge Remote Monitoring and Management technology, WAN Watch makes sure that network diagrams are kept updated, copies and displays the configuration information of virtually all devices connected to your network, tracks performance, and sends alerts when problems are detected. By automating tedious management and troubleshooting activities, ProSight WAN Watch can cut hours off common chores like network mapping, reconfiguring your network, locating appliances that need critical software patches, or isolating performance issues. Learn more about ProSight WAN Watch network infrastructure management services.

• ProSight Reporting: Real-time and In-depth Reporting for Ticketing and Network Monitoring Platforms
  ProSight Reporting is a growing line of in-depth management reporting utilities created to integrate with the industry's leading ticketing and network monitoring applications including ConnectWise Manage, ConnectWise Automate, Customer Thermometer, Auvik, and SentinelOne. ProSight Reporting incorporates Microsoft Graph and utilizes color coding to surface and contextualize key issues like inconsistent support follow-through or endpoints with missing patches. By exposing ticketing or network health problems concisely and in near-real time, ProSight Reporting improves network value, reduces management hassle, and saves money. For details, see ProSight Reporting for ticketing and network monitoring applications.

• ProSight Data Protection Services (DPS): Backup and Recovery Services
  Progent has worked with leading backup software companies to produce ProSight Data Protection Services (DPS), a portfolio of subscription-based management offerings that deliver backup-as-a-service (BaaS). ProSight DPS products automate and track your data backup processes and enable non-disruptive backup and rapid restoration of critical files, apps, images, and VMs. ProSight DPS lets you recover from data loss resulting from hardware failures, natural disasters, fire, malware like ransomware, human error, malicious employees, or application bugs. Managed services available in the ProSight Data Protection Services product family include ProSight DPS Altaro VM Backup, ProSight 365 Total Backup (formerly Altaro 365 Backup), ProSight ECHO Backup based on Barracuda purpose-built storage, and ProSight MSP360 Cloud and On-prem Backup. Your Progent service representative can help you to identify which of these fully managed backup services are best suited for your network.

• ProSight Email Guard: Inbound and Outbound Spam Filtering and Data Leakage Protection
  ProSight Email Guard is Progent's spam and virus filtering and email encryption service that uses the technology of leading information security vendors to provide centralized control and world-class security for all your inbound and outbound email. The hybrid structure of Email Guard combines a Cloud Protection Layer with an on-premises gateway device to offer complete protection against spam, viruses, Dos Attacks, Directory Harvest Attacks, and other email-based threats. Email Guard's cloud filter acts as a first line of defense and keeps most unwanted email from making it to your security perimeter. This decreases your exposure to inbound threats and conserves network bandwidth and storage space. Email Guard's on-premises security gateway device adds a further layer of analysis for incoming email. For outbound email, the local security gateway offers AV and anti-spam protection, protection against data leaks, and email encryption. The onsite gateway can also help Exchange Server to monitor and safeguard internal email that stays within your corporate firewall. For more details, visit Email Guard spam filtering and data leakage protection.

• ProSight Duo Two-Factor Authentication: Identity Validation, Endpoint Remediation, and Secure Single Sign-on (SSO)
  Progent's Duo MFA service plans utilize Cisco's Duo cloud technology to defend against stolen passwords by using two-factor authentication (2FA). Duo supports single-tap identity verification with iOS, Google Android, and other personal devices. Using Duo 2FA, when you log into a secured application and enter your password you are asked to confirm who you are on a device that only you possess and that uses a separate network channel. A broad selection of devices can be utilized for this added form of authentication including an iPhone or Android or wearable, a hardware/software token, a landline phone, etc. You may register multiple validation devices. To learn more about Duo two-factor identity validation services, refer to Cisco Duo MFA two-factor authentication services.

• Outsourced/Co-managed Call Desk: Help Desk Managed Services
  Progent's Call Desk services permit your information technology team to offload Support Desk services to Progent or divide responsibilities for Help Desk services transparently between your internal network support staff and Progent's extensive pool of IT support engineers and subject matter experts (SMEs). Progent's Co-managed Service Desk offers a seamless extension of your corporate support staff. User access to the Service Desk, delivery of support, escalation, ticket creation and tracking, efficiency measurement, and management of the support database are consistent whether issues are taken care of by your internal support resources, by Progent's team, or both. Find out more about Progent's outsourced/shared Help Center services.

• Active Defense Against Ransomware: Machine Learning-based Ransomware Detection and Cleanup
  Progent's Active Defense Against Ransomware is an endpoint protection (EPP) service that utilizes cutting edge behavior analysis tools to guard endpoint devices as well as physical and virtual servers against new malware assaults such as ransomware and email phishing, which routinely escape legacy signature-matching anti-virus tools. Progent ASM services protect local and cloud resources and offers a single platform to address the complete threat progression including protection, identification, mitigation, cleanup, and forensics. Key capabilities include one-click rollback with Windows Volume Shadow Copy Service (VSS) and real-time system-wide immunization against new threats. Read more about Progent's ransomware protection and recovery services.

• ProSight IT Asset Management: Network Documentation Management
  ProSight IT Asset Management service is a cloud-based IT documentation management service that makes it easy to create, maintain, find and protect information about your IT infrastructure, processes, business apps, and services. You can instantly locate passwords or IP addresses and be warned about impending expirations of SSLs ,domains or warranties. By updating and organizing your IT infrastructure documentation, you can eliminate up to 50% of time thrown away looking for vital information about your network. ProSight IT Asset Management includes a centralized repository for storing and sharing all documents related to managing your business network such as recommended procedures and self-service instructions. ProSight IT Asset Management also offers advanced automation for collecting and relating IT data. Whether you're making improvements, performing regular maintenance, or reacting to an emergency, ProSight IT Asset Management delivers the data you need when you need it. Read more about ProSight IT Asset Management service.

• Patch Management: Software/Firmware Update Management Services
  Progent's support services for software and firmware patch management provide organizations of any size a versatile and affordable alternative for evaluating, testing, scheduling, applying, and documenting software and firmware updates to your ever-evolving IT network. Besides optimizing the protection and reliability of your IT network, Progent's patch management services permit your IT staff to focus on line-of-business initiatives and tasks that derive the highest business value from your information network. Learn more about Progent's software/firmware update management support services.

• ProSight Virtual Hosting: Hosted Virtual Machines at Progent's World-class Data Center
  With Progent's ProSight Virtual Hosting service, a small organization can have its critical servers and apps hosted in a secure fault tolerant data center on a fast virtual host configured and managed by Progent's IT support professionals. Under the ProSight Virtual Hosting model, the customer owns the data, the OS platforms, and the applications. Because the system is virtualized, it can be moved immediately to an alternate hosting solution without requiring a time-consuming and technically risky reinstallation process. With ProSight Virtual Hosting, your business is not tied a single hosting provider. Learn more details about ProSight Virtual Hosting services.

• ProSight Enhanced Security Protection (ESP): Endpoint Protection and Microsoft Exchange Email Filtering
  Progent's ProSight Enhanced Security Protection services offer economical in-depth protection for physical servers and VMs, desktops, mobile devices, and Exchange email. ProSight ESP uses contextual security and advanced heuristics for round-the-clock monitoring and reacting to security threats from all vectors. ProSight ESP offers two-way firewall protection, penetration alerts, endpoint management, and web filtering through cutting-edge technologies packaged within a single agent accessible from a single console. Progent's data protection and virtualization experts can assist you to design and configure a ProSight ESP environment that addresses your organization's unique requirements and that allows you demonstrate compliance with legal and industry data protection regulations. Progent will help you define and configure policies that ProSight ESP will manage, and Progent will monitor your IT environment and respond to alerts that require immediate attention. Progent's consultants can also help you to set up and test a backup and disaster recovery solution like ProSight Data Protection Services (DPS) so you can get back in business quickly from a potentially disastrous cyber attack like ransomware. Find out more about Progent's ProSight Enhanced Security Protection (ESP) unified physical and virtual endpoint security and Microsoft Exchange filtering.

ProSight Network Audits
Progent's ProSight Network Audits offer a quick and low-cost alternative for small and mid-size organizations to get an objective evaluation of the health of their IT system. Based on some of the leading remote monitoring and management (RMM) tools available, and overseen by Progent's world-class group of IT experts, ProSight Network Audits show you how well the configuration of your essential infrastructure assets adhere to industry best practices. The Basic and Advanced options for ProSight Network Audit services are available at a budget-friendly, one-time cost and provide instant ROI like a cleaner Active Directory (AD) system. Both versions also include one year of state-of-the-art remote network monitoring and management (RMM). Benefits can include simpler management, improved compliance with information security standards, higher utilization of IT resources, faster troubleshooting, more dependable backup and recovery, and higher availability. Learn more about Progent's ProSight Network Audits IT infrastructure review.

Progent's ProSight Ransomware Preparedness Report
The ProSight Ransomware Preparedness Report is a low-cost service built around a brief discussion with a Progent backup/recovery expert. The fact-finding interview is intended to help evaluate your company's ability to counter ransomware or recover rapidly following an assault by a ransomware variant like Ryuk, Maze, Sodinokibi, Netwalker, DopplePaymer, Snatch or Egregor. Progent will consult with you personally to gather information concerning your current AV defense and backup/recovery procedures, and Progent will then produce a custom Basic Security and Best Practices Report detailing how you can apply best practices to build a cost-effective AV and backup/recovery environment that reduces your vulnerability to a ransomware attack and meets your business needs. For more information, refer to Progent's ProSight Ransomware Preparedness Report Service.

The Progent Advantage
Progent's team of more than 100 consulting professionals includes certified experts in every aspect of information technology related to small and mid-size businesses. With this breadth of expertise, Progent can be your one-stop source for integrating a comprehensive security solution that delivers immediate business value. In addition to the endpoint protection provided by ProSight Active Security Monitoring, Progent offers other managed services and specially-priced service packages designed to help small and mid-size businesses to deploy, validate, and manage networks that feature enterprise-class information assurance and low total cost of ownership (TCO).

Besides the ProSight suite of ongoing network management services, Progent offers specially priced one-time service bundles to help organizations of any size to achieve and demonstrate compliance with regulatory and industry security standards. These value-priced services include security vulnerability assessment and stealth penetration testing. Progent also offers expert disaster recovery planning consulting and business continuity planning consulting to help ensure you can return to operations quickly in case of a catastrophic failure due to a natural disaster, fire, cyber attack, human error, equipment breakdown, or any other foreseeable disruptive event.

Progent has expertise in all the endpoints, servers and virtual machines that can be protected by ProSight Active Security Monitoring and offers services that include Windows 11 planning and migration consulting, Windows 10 integration, Linux support, Mac OS X and macOS consulting, iPhone and iPad configuration, Android integration, Windows Server 2022 integration expertise, Windows Server 2019 migration consulting, Hyper-V virtualization support, and VMware vSphere consulting. For single-click or manual rollback capability, Progent's Windows Server consultants can help you set up Windows Volume Shadow Copy Service (VSS). Progent can also provide online and onsite access to certified Cisco CCIE consultants to help you plan, protect or troubleshoot your network infrastructure. If your network incorporates cloud resources, Progent offers the guidance of Microsoft Azure consultants, Amazon AWS experts, and Google Cloud integration consultants.

Contact Progent about ProSight Active Security Monitoring Services
To find out more about how Progent can help you set up an affordable, fully managed endpoint security solution with ProSight Active Security Monitoring, call 1-800-993-9400 or visit Contact Progent.

Ransomware 24x7 Hot Line: Call 800-462-8800
Progent's Ransomware 24x7 Hot Line is intended to guide you to carry out the crucial first steps in responding to a ransomware assault by stopping the bleeding. Progent's remote ransomware expert can assist you to locate and isolate breached servers and endpoints and guard undamaged resources from being compromised. If your network has been breached by any strain of ransomware, act fast. Get immediate help by calling Progent's Ransomware Hot Line at 800-462-8800. For details, see Progent's Ransomware 24x7 Hot Line.