Photo - (From left) Vasanthamohan Vasudevan, General Manager, ICT Services, VADS Berhad; Dato' Seri George Chang, Vice President, South East Asia & Hong Kong, Fortinet; Ahmad Azhar Yahya, Chief Executive Officer, VADS Berhad; and Jeff Hurmuses, Vice President, Sales (APAC), Barracuda Networks.
Telekom Malaysia's business process outsourcing arm VADS' partnership with security firms Barracuda Networks and Fortinet has driven the launch of two new Web security products called VADS Managed Unified Threat Management (MUTM) and VADS Managed Web Application Firewall (MWAF).
VADS chief executive officer Ahmad Azhar Yahya said the two new additions to the firm's managed security services portfolio continues its strategy of 'defence in depth' best practices. "This is accomplished through a balanced focus on three primary elements: people, process and technology; which are the core building blocks of VADS Security Operations Centre (SOC)."
"Data protection has never been so important and as a service provider, it is our duty to ensure that the threats online are handled in the most appropriate manner so that our customers' business is not severely affected," said Ahmad Azhar. "VADS MUTM and MWAF solutions are targeted at all businesses transcending various industries which regard security as a key concern area for their organisation."
He said both the MUTM and MWAF solutions are offered on a managed service model and come with full device management and proactive security monitoring of Web application firewall traffic coupled with end-to-end provisioning, support and maintenance from VADS.
VADS signed with Barracuda Networks to produce VADS MWAF, available in three packages; MWAF Starter (1 Web application), MWAF Standard (3 Web applications) and MWAF Premium (5 Web applications). All three packages are offered on a three-year contract.
The partnership with Fortinet allows VADS to offer MUTM, also available in three packages - Basic (without reporting feature), Reporting Basic (with FortiCloud reportings) and Advanced Reporting (with Fortianalyzer reporting) - and all offered with a three-year contract.
VADS SOC was established in 2005 and is ISO/IEC 27001:2005 certified where VADS' certified personnel monitor and manage more than 1,000 security devices.
Driven by compliance interests
Ahmad Azhar said the VADS MUTM solution provides multiple security features on a single platform to protect against viruses, Trojans, spywares and other malicious threats. The solution includes Intrusion Prevention System (IPS), Virtual Private Network (VPN), Anti-Virus, Web Content Filtering and Application Control. With MUTM, the complexity of managing the security applications is reduced, giving users more scalable and comprehensive protection against network-level and content-level threats.
The VADS MWAF solution protects Web applications and servers from application level attacks such as SQL injection, cross-site scripting, cookie tampering and directory traversal attacks. The MWAF firewall is positioned in the customer's Internet gateway with 24x7 surveillance monitoring and management by VADS' SOC. MWAF also helps customers meet the compliance mandate of Payment Card Industry Data Security Standard (PCI DSS) and ISO27001.
"The interest for MWAF comes from larger organisations, which need to comply with Requirement 6.6 of the Payment Card Industry Data Security Standard (PCI DSS) and requires organisations to protect Web applications by either reviewing all custom code for vulnerabilities or installing a Web application firewall," he said.
"VADS Managed Security Services delivers both on-premise and cloud-based deployment models to cater for the varied needs of the small to large enterprises as well as government agencies and departments," he said.
Sign up for CIO Asia eNewsletters.