Cyber Command & Control Center ( C4)

"Cyber Command & Control Center (C4)" to pro-actively monitor customer infrastrcture for Availabilty, Security & Performance in real-time. Organizations increasingly find managing the complexities of their growing systems and networks time and resource intensive. High cost of operations coupled with lack of trained personnel present a challenge to monitor and manage the complex and dynamic IT infrastructure environment. The need to seamlessly manage diverse sets of technologies and a single view dashboard to monitor performance of the systems is also critical for your enterprise. Magellanix built a OpenSource based C4 to reduce the cost of the monitoring to 55% and wide options interms of Availability,Security & Performance moniotring. Magellanix offers a balanced approach. compliance, pro-active and flexible delivery models to its customers across the globe. The service offerings are bundled together so as to take care of all security operations in a customer's infrastructure envionrment.

With today’s technology, information and communications can be optimized like never before. Our C4 engineer possess a wide range of expertise in Threat management,Identity & Access Management and Security Information & Event Management software products and tools.The responsibility of a C4 engineers are segmented into following areas:

Availability

  • Data Center Computer Hardware, Networks (WAN and LAN )
  • Cloud Servers - Amazon EC2 / Windows Azure
  • Application Monitoring
  • Windows 2008/2012 & Linux & Unix Server
  • MySQL, MSSQL & Oracle
  • WebServers -IIS,Apache
  • WebSites Monitoring

Security

  • Protect against internal and external threats
  • Make the most of existing and future security investments
  • Bolster security with advanced research and global security intelligence
  • Obtain comprehensive visibility into the security activity on your network
  • Extend your team with security experts at your service 24x7
  • Meet and exceed regulatory requirements for log monitoring

Performance

  • Unix & Windows Servers
  • Application Servers
  • Web Servers
  • MySQL / MS SQL / Oracle Databases
  • Routers & Firewalls

Threat Table

Threat Description
Bot-network operators Bot-network operators are hackers; however, instead of breaking into systems for the challenge or bragging rights, they take over multiple systems in order to coordinate attacks and to distribute phishing schemes, spam, and malware attacks. The services of these networks are sometimes made available in underground markets (e.g., purchasing a denial-of-service attack, servers to relay spam, or phishing attacks, etc.).
Criminal groups Criminal groups seek to attack systems for monetary gain. Specifically, organized crime groups are using spam, phishing, and spyware/malware to commit identity theft and online fraud. International corporate spies and organized crime organizations also pose a threat to the United States through their ability to conduct industrial espionage and large-scale monetary theft and to hire or develop hacker talent.
Foreign intelligence services Foreign intelligence services use cyber tools as part of their information-gathering and espionage activities. In addition, several nations are aggressively working to develop information warfare doctrine, programs, and capabilities. Such capabilities enable a single entity to have a significant and serious impact by disrupting the supply, communications, and economic infrastructures that support military power - impacts that could affect the daily lives of U.S. citizens across the country.
Hackers Hackers break into networks for the thrill of the challenge or for bragging rights in the hacker community. While remote cracking once required a fair amount of skill or computer knowledge, hackers can now download attack scripts and protocols from the Internet and launch them against victim sites. Thus while attack tools have become more sophisticated, they have also become easier to use. According to the Central Intelligence Agency, the large majority of hackers do not have the requisite expertise to threaten difficult targets such as critical U.S. networks. Nevertheless, the worldwide population of hackers poses a relatively high threat of an isolated or brief disruption causing serious damage.
Insiders The disgruntled organization insider is a principal source of computer crime. Insiders may not need a great deal of knowledge about computer intrusions because their knowledge of a target system often allows them to gain unrestricted access to cause damage to the system or to steal system data. The insider threat also includes outsourcing vendors as well as employees who accidentally introduce malware into systems.
Phishers Individuals, or small groups, who execute phishing schemes in an attempt to steal identities or information for monetary gain. Phishers may also use spam and spyware/malware to accomplish their objectives.
Spammers Individuals or organizations who distribute unsolicited e-mail with hidden or false information in order to sell products, conduct phishing schemes, distribute spyware/malware, or attack organizations (i.e., denial of service).
Spyware/malware authors Individuals or organizations with malicious intent carry out attacks against users by producing and distributing spyware and malware. Several destructive computer viruses and worms have harmed files and hard drives, including the Melissa Macro Virus, the Explore.Zip worm, the CIH (Chernobyl) Virus, Nimda, Code Red, Slammer, and Blaster.
Terrorists Terrorists seek to destroy, incapacitate, or exploit critical infrastructures in order to threaten national security, cause mass casualties, weaken the U.S. economy, and damage public morale and confidence. Terrorists may use phishing schemes or spyware/malware in order to generate funds or gather sensitive information.