Cybersecurity
Abstract
Cybersecurity: ($52.30) Comprehensive Cybersecurity framework tools consist of NetScout, ForeScout, Splunk & Verodin which provide protections for advanced endpoint asset management, enhanced network access control, malware detection, and the ability to respond to threats in near real-time that are used to support endpoint configuration baselines and compliance across thousands of endpoints. NetScout is a system for supporting unified network management across geographic regions and diverse transports (e.g., Wide Area Networks (WAN), Local Area Networks (LAN), and peer networks). NetScout system components include real-time dashboards, servers, deployment agents, taps, data collectors, and analytics engines. Netscout will facilitate enterprise visibility and service assurance. It provides Layer 2-7 real-time visibility into networks, applications and services. It also inspects traffic (deep packet inspection), captures data and forensics, supports data analytics, anomaly detection and performance discovery. Netscout also supports troubleshooting and predictions of network performance. Forescout hardware and software provides enhanced network access controls, providing authentication for the network and orchestrating the NEN security component to support the DoD CIO Pathfinder Comply-to-Connect (C2C) effort. The solution provides network operators with the ability to scan, quarantine, and remediate endpoints that are out of compliance before allowing connection to the network. Failure or immediate shutdown / disconnection of solution would result in a denial of service for endpoint devices and server connections to the NEN switching network. Splunk provides the ability to perform investigations based on log records and provides U.S. Fleet Cyber Command/Commander, U.S. Tenth Fleet, Naval Network Warfare Command and Navy Cyber Defense Operations Command with real-time SA on network activity, events, status, and availability. The solution supports the DoD CIO Pathfinder C2C effort and provides compliance with INFOCON data retention requirements. Verodin hardware, software, and warranty to deliver the DoD CIO Pathfinder Comply to Connect (C2C) and Situational Awareness effort. Verodin is used to validate security policies and configurations. Results are used to inform network maneuvers to increase security as well as confirm desired effect of such network maneuvers. C2C supports the Enterprise-wide Navy Cyber Situational Awareness (NCSA) and integrated Common Operational Picture (COP) initiative through an enterprise log management platform that provides a "single pane of glass" to view and respond to near real-time security intelligence, incident detection, investigations, continuous monitoring, alerting and analytic collected from security and event information data feed sources. (Server/Workstation Hardening, Authentication and Authorization, Network Compartmentalization, Quarantine and Isolation and Auto Remediation capabilities)
Document Details
- Document Type
- Accomplishment
- Publication Date
- Oct 01, 2022
- Source ID
- d548d84d247a320f6742fc2ec13c22bf