Security solutions identify Insider & External threats/vulnerabilities, mitigate risks, and enable audits & compliance in a highly uncertain and risky digital world. Our experts can help you manage those risks.
Cybersafety tips
- Update your software and operating system: This means you benefit from the latest security patches.
- Use anti-virus software: Security solutions will detect and removes threats. Keep your software updated for the best level of protection.
- Use strong passwords: Ensure your passwords are not easily guessable.
- Do not open email attachments from unknown senders: These could be infected with malware.
- Do not click on links in emails from unknown senders or unfamiliar websites: This is a common way that malware is spread.
- Avoid using unsecured WiFi networks in public places: Unsecure networks leave you vulnerable to man-in-the-middle attacks.
Basic vocabulary
Cybersecurity
The efforts to design, implement, and maintain security for an organization’s network, which is connected to the Internet. It is a combination of logical/technical-, physical- and personnel-focused countermeasures, safeguards, and security controls. An organization’s cybersecurity should be defined in a security policy, verified through evaluation techniques (such as vulnerability assessment and penetration testing), and revised, updated, and improved over time as the organization evolves and as new threats are discovered.
Firewalls
The first line of defense against Internet traffic to protect enterprise networks from intrusions introduced through Web applications and other malicious activity with the employment of IPS, Anti-spam, Anti-virus, and Application Control.
Firewalls put up a barrier between your trusted internal network and untrusted outside networks, such as the Internet. They use a set of defined rules to allow or block traffic. A firewall can be hardware, software, or both.
DDoS
An acronym that stands for distributed denial of service – a form of a cyber attack. This attack aims to make a service such as a website unusable by “flooding” it with malicious traffic or data from multiple sources (often botnets).
Malware
“Malware,” short for “malicious software,” includes viruses, worms, Trojans, ransomware, and spyware. Sometimes malware will infect a network but lie dormant for days or even weeks. The best antimalware programs not only scan for malware upon entry, but also continuously track files afterward to find anomalies, remove malware, and fix the damage.
PKI
Public-key infrastructure is to manage keys and certificates services such as:
- public-key certificates
- a certificate repository
- certificate revocation
- support for non-repudiation of digital signatures
- support for cross-certification
Client-side software interacts with all of the above in a secure, consistent, and trustworthy manner.
Key backup and recovery.
DPI
- Deep Packet Inspection enables advanced network management, user service, and security functions as well as internet data mining, DDoS, network management, congestion management, and fair-use policies.
Virtual Private Network (VPN)
A tool that allows the user to remain anonymous while using the internet by masking the location and encrypting traffic.
Cervello Security Services
Cervello’s services provide an extensive and systematic process for identifying, assessing and managing cybersecurity risks throughout the railway organization. Our railway experts enable you to ensure high-level network security design, security requirements are met and industry best practices are implemented. By applying the most advanced risk assessments methodologies for eliminating shadow risks, we ensure you fully understand your cybersecurity risk posture.