IT Security

Gruppo SIGLA, a company based in Genoa, thanks to its experience as a system integrator with high skills both in IT and OT, it proposes itself as a partner that supports its customers in the design of security systems and in the orchestration of the various technologies that contribute to company safety. Gruppo SIGLA's experience allows you to manage all the phases of large-scale cybersecurity projects: from the assessment, both technological and organizational, to the conduct of risk analysis with the drafting of the related action plans, to the planning and implementation of countermeasures. In this context, Gruppo SIGLA has carefully selected a set of technologies that cooperate with each other and with those that may already be present in the company, which make it possible to support the implementation phase of cyber security projects. Among the technological partnerships that Gruppo SIGLA has entered into with leading vendors in the sector, we mention:

• Infoblox
  a leader in management solutions for DNS, DHCP and IP address. Infoblox keeps the network reliable and active at all times. In particular, the DNS Protection solution allows to proactively protect against cyber threats conveyed through the DNS protocol. It is a type of attack in strong growth and not managed by solutions not specialized in this area.
• Nozomi Networks
  a leader in the industrial cyber security market, thanks to a real-time visibility solution capable of defending industrial plants and infrastructures with a solution that easily integrates IT and OT. Thanks to an innovative use of Artificial Intelligence, the company helps the largest industrial sites around the world to monitor and protect their industrial installations.
• Proofpoint
  is a company founded by Eric Hahn, one of the world's leading cyber security experts. The approach focuses on the risks arising from targeted attacks on end users by providing an advanced e-learning platform. In addition, the solutions solve advanced threats to computer security that are conveyed through e-mail, social media, mobile devices and the cloud.
• SGBox
  is an Italian company producing the homonymous SIEM (Security Information and Event Management) platform for the control and management of ICT security. The product guarantees complete visibility on the corporate network, collecting and aggregating logs of any format and type, in order to analyze and correlate information in real time and detect threats and anomalies. The UBA behavioral analysis function (User Behavior Analytics) allows you to analyze data relating to user activity, automatically identifying potential anomalies. SGBox also supports compliance for GDPR, PCIDSS, SOX, ISO 27001 and SAMA Cybersecurity Framework.
• Stormshield
  a leader in the design of IT security systems which, in addition to the solutions concerning the protection of networks, data and workstations, also offers the possibility of securing industrial environments and SCADA, according to the guidelines of Industry 4.0.
• Wallix
  is a French company, European leader in the field of privileged access. The flagship solution Wallix Bastion is recognized in the Gartner magic quadrant among Privileged Access Management (PAM) solutions.

Gruppo SIGLA is also very active in the field of research where it actively collaborates with CIPI (Interuniversity Research Center on the Engineering of IT Platforms) whose members are the Universities of Genoa, Padua and Sassari to carry out research activities in the cybersecurity field. A joint laboratory was also created where the various aspects related to the world of cybersecurity are addressed, from applications and problems in the IT and OT fields, to the Internet of Things, Distributed Ledger and BlockChain, to the impacts on Software Engineering and challenges posed for the development of Smart Cities.

Security Operation Center

In the context of security policies within a company, the adoption of a SOC is a fundamental element, as it allows you to correctly address and plan a Cybersecurity strategy to protect the most advanced threats.

Gruppo SIGLA provides a SOC service that uses a complete set of latest generation tools, essential for the provision of security monitoring and management services, designed to address and resolve any critical situation.

Thanks to this set of technologies it is possible to activate the proactive monitoring service of the SOC (Security Operation Center), to protect network endpoints such as PCs, Servers, Tablets and smartphones.

Certified operators carry out active 24/7 monitoring of all endpoints. In the event of alarms, they are activated to resolve the security problem detected, carrying out a series of remedial actions. Furthermore, automatic remedial actions are also possible, thanks to the use of SIEM & SOAR tools that allow the archiving, correlation of all events and subsequent analysis with AI algorithms.

Services

In particular the services offered to Companies are:

• Security consultancy (risk analysis, attack detection, countermeasures,…)
• Security Operation Center for monitoring and managing networks and IT/OT infrastructure
• Cloud Data Security: T4 category DataCenter - Cloud Backup - Object Storage - DisasterRecovery
• Integration between IT and OT environments
• Protection and optimization of IT and OT networks
• Industrial (OT) device and access protection

• Vulnerability Assessment and Penetration Test
• Drafting of remediation plans related to risk assessments
• Digital Asset Protection: development of software solutions for the protection of digital assets and copyrights, via Blockchain and NFT
• Consultancy for compliance with the GDPR and the ISO 27001 standard
• ISO/IEC 27001 and PCI-DSS training and certification
• Risk analysis activity based on ISO 27005:2018 and IEC 62443 standards

Technologies

The proposal of Gruppo SIGLA in IT Security sector involves the use of these technologies: