Customized Protection for Large, Mission-Critical Networks
Nexusguard offers a complete suite of solutions to protect the public-facing and backend infrastructure from volumetric and application layer attacks. The scope of services can further be customized to meet the distinctive requirements, for example, by server type, by network requirements (Class C and GRE tunnels), and by availability (on-demand or always-on). Our solutions able to guard against multi-vector attacks fit into any environment, including individual address protection or entire Class C range. Customizable to meet your security needs, it comprehensively protects your network to maximize service uptime and ensure reliable performance for public utilities delivered through government networks.
Address Data Sovereignty Concerns
In some jurisdictions, data sovereignty is of utmost importance to government agencies. At request, Nexusguard can architect a deployment that allows local traffic to be cleaned within the jurisdiction and international traffic to be cleaned in other scrubbing centers elsewhere. Clean traffic from abroad is brought directly back to your jurisdiction via dedicated capacity.
Multi-tenant Architecture & Granular Visibility
Our Federated Portal is architectured to fit a complex hierarchical government structure. Role-based hierarchy controls ensure the central, regional and local agencies as well as their subtenants and end-users have the right levels of access, for example, super admin, admin and user accounts, to the right set of traffic visibility and control. With robust, real-time dashboard analytics, authorized personnel can clearly see malicious traffic that is permeating their network.
Flexibility to Localize Security Profiles
Given the sheer number of IP addresses in a government network and that each IP address can serve different port services, default network analysis and global anti-flood policies may not fully address the security needs of the organization. Nexusguard’s mitigation platform allows the organization to build custom rules tailored to specific protection groups to achieve the highest mitigation accuracy and minimize false positives. It also provides a focused view of the malicious traffic and policy violations on your network.
Nexusguard applies the calculation of burstable billing to its clean bandwidth pricing, based on the 95th percentile of actual usage. This transparent pricing model gives government agencies a clear picture of bandwidth usage and as such how the taxpayers' money is spent.
Web Application Firewall (WAF)
As an integral part of our multilayered mitigation platform, Nexusguard's Web Application Firewall (WAF) ensures fast, reliable and secure delivery of web content and applications. It is geared to defend against OWASP Top 10 Threats, such as SQL injection, brute force attacks on login pages, and many more. WAF is one of a staple in Application Protection that protects sites and applications from SSL-based attacks. Our SSL cert management tool which is PCI and ISO 27001 compliant helps handle SSL-based attacks. WAF events and attacks are monitored and handled via the global multi-terabit scrubbing cloud managed by our SOC 24x7 staffed with security experts. All rule-set updates, upgrades and patch delivery are performed automatically.