Service(A)

Bithex SecureWerk™ – Automated Security Scans, Daily Security Checks and Penetration Testing

Bithex SecureWerk is a service that provides security assessments of information systems with automated security scans, daily security checks for newest vulnerabilities, vulnerability management, penetration testing and regular reports on the overall security status of your information systems. Bithex SecureWerk is build on industry standard security and vulnerability scanners that cover tens of thousands of known vulnerabilities and misconfigurations in all versions of operating systems, network services, web servers and websites.

 

Bithex SecureWerk is available in two different versions, Bithex SecureWerkBase and Bithex SecureWerk Enterprise. Additionally, users of Bithex SecureWerk can place their systems in SecureWerk Network Monitor for all popular network services. Monitoring frequency in SecureWerk Network Monitor goes from one to the ten minutes.

Bithex SecureWerk™ Base

For your company’s Internet connected assests and equipment like web servers, email servers, DNS name servers, FTP servers, firewalls etc., it is of vital importance to test and monitor the security posture of such devices at all times. With Bithex SecureWerk Base, companies can put all of their Internet connected equipment into daily security testing for newest vulnerabilities and security issues. Additionally, the user can place selected systems under regular penetration testing, where detailed tests and exploits are executed to try critical vulnerability holes and break in paths to their computers and software systems.

Bithex SecureWerk Base is also suitable if you want to manage your own security scanning and testing. This service is intended for users that understand the nature of security scans, what effect they may have on network resources and how to evaluate and understand security scan results.

Additionally users of SecureWerk can put their network servers under Network Montoring (Network Monitor) to monitor and gauge performance and availability of all common network services. The user will recieve alerts upon downtime and low performance of their network servers.

What’s included in Bithex SecureWerk Base?

  • Daily security scans for newest vulnerabilities on all registered systems.
  • Full security scans monthly for all registered systems.
  • Detailed Penetration Testing for selected systems annually.
  • Detailed security assessment of open web sites and web apps annually (Bithex WSC).
  • Annual Status Report displaying overall security posture and meeting with customer.
  • Vulnerability management, reliability clarification and detailed instructions on fixes and controls.
  • We respond to new vulnerabilities discovered in regular security scans.
  • Unlimited number of Bithex SecureWerk accounts.
  • Access to all security tools of the Bithex SecureWerk interface included.
  • Unlimited number of SecureWerk security scans performed.
  • Risk assessment and classification of vulnerabilities according to Bithex Security Risk Level Definition.
  • Support through phone and email on use, reports, false positives management, technical resolution of security issues.
  • Support is for registered systems only.
  • Users can add their systems to Network Monitor.

Price for Bithex SecureWerk base

Price for Bithex SecureWerk Base is from EUR 219,- annually.
Bithex SecureWerk users can add their web servers and network services to the Bithex Network Monitor at any time.

You can send us email for more information or price quote, or  fill out our order form now for access to Bithex SecureWerk.

Bithex SecureWerk™ Enterprise

For companies that have implemented information security management systems, and companies that need to, or want to go through regular security assessments, Bithex SecureWerk is a service where the status of information security of external networked systems and equipment is monitored through regular and formal processes.

The service is executed by Bithex’s personell and is comprised of testing all external systems with daily security checks for all newest vulnerabilities, monthly full security scans and penetration testing of all systems from two to four times yearly (by customer demand). A formal status report is issued after each pen test to display the overall status of information security and compliance to Bithex Criteria for System Security.

Companies can use status reports from Bithex SecureWerk alongside with, or as input to regular risk assessments of information systems and assets, where found issues are classified into different risk levels with probability of security events happening as a result of found vulnerabilities.

What’s included in Bithex SecureWerk enterprise?

  • Daily security scans for all registered systems on external network.
  • Full security scans weekly or monthly for all registered systems.
  • Port scans and fingerprinting of customer’s entire external network.
  • Detailed security assessments and penetration testing of all registered systems.
  • Detailed security assessments of all open websites and web applications (Bithex WSC) annually.
  • Status reports to show overall status of information security and meetings with customer.
  • Vulnerability management, reliability clarification and detailed instructions on fixes and controls.
  • Response to new vulnerabilities found with daily security checks and regular vulnerability scans.
  • Unlimited number of Bithex SecureWerk accounts.
  • Access to all security tools of Bithex SecureWerk.
  • Unlimited number of systems in IP access list. All IP addresses must be in the property of the user.
  • Unlimited number of security scans.
  • Risk assessment and classification of vulnerabilities according to Bithex Security Risk Level Definition.
  • Support through phone and email on use, reports, false positives management, technical resolution of security issues.
  • Support is for registered systems only.
  • Users can add their systems to Network Monitor.

Price for Bithex SecureWerk Enterprise

Price for Bithex SecureWerk enterprise starts from EUR 636,- per year. Regular Penetration Testing is performed two, three or four times annually, depending on the customer’s whishes.
Please contact us for more information and an immediate price quote.

Bithex SecureWerk™ and Standards on Information Security.

Companies who have implemented management systems on information security use Bithex SecureWerk to fulfill various requirements and controls mandated by sucj standards, such as ISO/IEC 27001 PCI DSS and other.

Implementation does vary between companies, but in general, Bithex SecureWerk can be used as aid for ISO/IEC 27001:2007 controls like: A.10.4.1, A.10.6.1, A.10.6.2, A.10.10.5, A.11.1.1, A.11.4.6, A.11.6.1, A.11.6.2, A12.5.4, A.12.6.1, A.13.1.2, A.14.1.2, A.15.2.1.

Please contact us for more information and an immediate price quote.