In recent years there has been a growing need for IT security due both to an increase in attacks from structured organizations, and to the need to comply with the EU privacy legislation (GDPR - General Data Protection Regulation), the NIS Directive and the Cybersecurity Act. It is for this reason that addressing the topic of cybersecurity is particularly complex, and cannot be limited by a purely technological and silos vision. Therefore, in this fragmented scenario, the best solution is a holistic approach, which simultaneously leverages on people, processes, policies and technologies.


Gruppo SIGLA, a company based in Genoa, thanks to its experience as a system integrator with high skills both in IT and OT, it proposes itself as a partner that supports its customers in the design of security systems and in the orchestration of the various technologies that contribute to company safety. Gruppo SIGLA's experience allows you to manage all the phases of large-scale cybersecurity projects: from the assessment, both technological and organizational, to the conduct of risk analysis with the drafting of the related action plans, to the planning and implementation of countermeasures. In this context, Gruppo SIGLA has carefully selected a set of technologies that cooperate with each other and with those that may already be present in the company, which make it possible to support the implementation phase of cyber security projects. Among the technological partnerships that Gruppo SIGLA has entered into with leading vendors in the sector, we mention:

  • Infoblox
    a leader in management solutions for DNS, DHCP and IP address. Infoblox keeps the network reliable and active at all times. In particular, the DNS Protection solution allows to proactively protect against cyber threats conveyed through the DNS protocol. It is a type of attack in strong growth and not managed by solutions not specialized in this area.
  • Nozomi Networks
    a leader in the industrial cyber security market, thanks to a real-time visibility solution capable of defending industrial plants and infrastructures with a solution that easily integrates IT and OT. Thanks to an innovative use of Artificial Intelligence, the company helps the largest industrial sites around the world to monitor and protect their industrial installations.
  • Proofpoint
    is a company founded by Eric Hahn, one of the world's leading cyber security experts. The approach focuses on the risks arising from targeted attacks on end users by providing an advanced e-learning platform. In addition, the solutions solve advanced threats to computer security that are conveyed through e-mail, social media, mobile devices and the cloud.
  • SGBox
    is an Italian company producing the homonymous SIEM (Security Information and Event Management) platform for the control and management of ICT security. The product guarantees complete visibility on the corporate network, collecting and aggregating logs of any format and type, in order to analyze and correlate information in real time and detect threats and anomalies. The UBA behavioral analysis function (User Behavior Analytics) allows you to analyze data relating to user activity, automatically identifying potential anomalies. SGBox also supports compliance for GDPR, PCIDSS, SOX, ISO 27001 and SAMA Cybersecurity Framework.
  • Stormshield
    a leader in the design of IT security systems which, in addition to the solutions concerning the protection of networks, data and workstations, also offers the possibility of securing industrial environments and SCADA, according to the guidelines of Industry 4.0.

Gruppo SIGLA is also very active in the field of research where it actively collaborates with CIPI (Interuniversity Research Center on the Engineering of IT Platforms) whose members are the Universities of Genoa, Padua and Sassari to carry out research activities in the cybersecurity field. A joint laboratory was also created where the various aspects related to the world of cybersecurity are addressed, from applications and problems in the IT and OT fields, to the Internet of Things, Distributed Ledger and BlockChain, to the impacts on Software Engineering and challenges posed for the development of Smart Cities.


Services

In particular the services offered to Companies are:

  • Security Consulting (risk analysis, detection of attacks, countermeasures, ...)
  • Designing the IT Security Architecture
  • Managing Networks and Infrastructure IT
  • IT asset inventory Management
  • Vulnerability Assessment and Penetration Test
  • Consultancy for adaptation to GDPR and ISO 27001 standard
  • Training and certification ISO/IEC 27001 and PCI-DSS
  • Risk analysis activity based on ISO 27005: 2018 and IEC 62443 standards
  • Integration between IT and OT environments
  • Protection and optimization of IT and OT networks
  • Drafting of remediation plans related to risk assessments
  • Drafting of cybersecurity policies and procedures

Technologies

The proposal of Gruppo SIGLA in IT Security sector involves the use of these technologies:

  • MS Windows Family
  • Unix based systems
  • macOS
  • Android
  • iOS
  • Stormshield
  • Bitdefender
  • Kasperky Lab
  • Sophos
  • Symantec
  • Trend Micro
  • Microsoft
  • Cisco
  • SGBox
  • Stormshield
  • Nozomi
  • Infoblox
  • Dell Sonic Wall
  • Fortinet
  • Juniper
  • Phoenix Contact
  • VMware
  • Citrix XenServer
  • Hyper-V
  • Amazon Web Services
  • Google Cloud Platform
  • Microsoft Azure
  • Docker
  • Openstack
  • Kubernetes
  • IEC 60870-5-101, 103, 104
  • Modbus 232 / 485
  • Modbus TCP-IP
  • Profibus/Profinet
  • OPC Server & Client
  • S7
  • TCP/IP, UDP, COM
  • Courses on Computer Security
  • Internal Auditor ISO/IEC 27001 Course
  • Lead Auditor ISO/IEC 27001 Course
  • PCI DSS (Payment Card Industry Data Security Standard) Course
  • Courses for end users (es. anti-phishing, GDPR, password management, etc.)
  • Cybersecurity (network security,endpoint protection, kali linux) and Security Awareness Platforms
  • ISO/IEC 27001, 27002, 27005
  • D.Lgs. 196/2003
  • GDPR