Endpoint &
Ransomware Protection
3.9.2023
.jpeg)
.png)
5.6.2022
2.25.2022
12.15.2021
Riverstrong offers three main security packages, designed to promote the confidentiality, integrity, and availability of information systems and data. The Riverstrong SecurePort suite provides building blocks to start your cybersecurity journey, proven methodologies to expand upon existing efforts, or expert guidance refine abstract security initiatives into a comprehensive security program.
SecurePort: Start your journey with a full vCISO network, security, & risk assessment to analyze weaknesses, current security posture, and develop a strategy with roadmap. Our Risk Assessments are based off another proven framework, NIST SP 800-30 “Guide for Conducting Risk Assessments”.
SecurePort+: Build a solid cybersecurity foundation with baseline protection configurations and a modern suite of security tools to protect all devices on the network, 24×7/365.
SecurePort Total: All-encompassing system review, a comprehensive suite of security tools, and vCISO governance to manage it all. Go for total protection with a managed security program that strives to meet all the NIST 800-171 controls. Riverstrong will work with you to develop a thorough policy set based off industry agnostic templates and provide process consulting to ensure security controls and compliance goals are continuously managed.
Speak to an Expert
A security program is the point where security solutions and management methodology meet. Your security program is the collection of personnel, policy, procedures, controls, tools, activities, projects, and any other initiatives related to the protection of organizational assets such as systems, data, and people.
Riverstrong's goal for a managed security program is to provide the oversight, guidance, and resources needed to address threats and risks, reduce downtime and loss, and ultimately to push your organization to a place of growth and resiliency.
Endpoint &
Ransomware Protection
Endpoint &
Ransomware Protection
The biggest threat to any network is the end user and the endpoint device. Protecting devices with the full suite of endpoint protection is a modern-day necessity. Modern security tools such as IAM, 24x7 SOC, AV, EDR, DNS Filtering, Email Threat Protection, and Disk Encryption are deployed with SecurePort+ for 360* protection.
24/7 Managed Security
Operations Center
24/7 Managed Security
Operations Center
Cybersecurity threats do not abide by any schedule, and as such, it is an absolute necessity to monitor and react to any critical threats across the organization 24/7x365. Riverstrong has partnered with RocketCyber, a US-Based SOC staffed by practiced security analyst, to provide round the clock monitoring and protection of client systems.
Multi-factor Identification
Multi-factor Identification
Passwords must be used in conjunction with multi-factor authentication (MFA) or Identity Access Management (IAM) tools to ensure the person logging into the account is verified with their personal device. Our specialty in identity management across platforms allows us to implement a comprehensive access management policy.
Phishing Simulation
& Awareness Training
Phishing Simulation
& Awareness Training
The greatest cybersecurity tools in the world won’t protect your organization if end users permit malicious action. Riverstrong has partnered with Hook Security to provide custom monthly managed phishing simulations and end-user training to bring phishing awareness to the forefront.
DNS and Content Filtering
DNS and Content Filtering
Are you sure the website you are about to visit is safe? Do you want to prevent employees from visiting certain categories of websites from company computers? Consult with our SecurePort Specialists to discuss solutions to address your concerns and protect your organization while surfing the internet.
Email Threat Protection
& Message Encryption
Email Threat Protection
& Message Encryption
Email remains a key threat vector for malicious actors, who utilize techniques such as spoofing, infected attachments, and harmful links to compromise user accounts and devices. Stop this at these attacks before they reach your organization through cloud-based edge protection and protect the sensitive contents of your outgoing message through FIPS compliant email encryption.
NIST 800-171 Security Audit
NIST 800-171 Security Audit
Using the established NIST 800-171 security framework, our security analysts will audit the existing configurations, processes, and policies utilized by your organization. This audit will allow us to determine plans of actions and milestones to help chart a comprehensive, compliant cybersecurity program.
Risk, IT, and Vulnerability Assessment
Risk, IT, and Vulnerability Assessment
Identify your current security posture by engaging in a deep-dive analysis of your hardware, software, cloud, and network infrastructure. By developing a holistic understanding of your organization’s risks, vulnerabilities, and deficiencies Riverstrong is able to develop a remediation roadmap that identifies cost-effective value gains.
Data Compliance
and Security
Data Compliance
and Security
Protecting your source of truth or any critical data should be one of the biggest investments in IT. Our SecurePort Specialists are highly skilled in data protection frameworks such as NIST 800-171, ISO 27001, and SOC 2. Let’s work together to determine the roadmap to ensure your critical business data survives any disasters.
PII Confidentiality
Consulting
PII Confidentiality
Consulting
Customer, Patient, or Personal Identifiable Information (PII) is one of the most critical types of business data and must be identified, managed, and protected. Our SecurePort Specialists are specifically trained in ISO 27701, and will work with you to fully control and manage PII data in your organization.
Mobile Device
Management
Mobile Device
Management
The need to manage mobile devices connected to your technology platforms with access to your company data is ever-increasing. Fortunately, we can help you secure the tools to do so. MDM tools such as Microsoft Intune can provide the platform to fully manage and protect your company data on mobile devices.
Penetration Testing
Penetration Testing
Annual Penetration Tests are an essential way to test your digital locks, accounts, access, and overall security, as they help unveil your organization’s vulnerabilities and strengths. Riverstrong’s SecurePort specialists will deliver a comprehensive report with risks and recommendations to remediate any weaknesses.
Log and Events
Monitoring
Log and Events
Monitoring
Every enterprise-grade hardware and software program generates event logs to track activities for audit purposes. Our consultants work to capture individual logs from disparate sources into a singe platform to allow for pattern analysis and alerting based on defined rulesets.
Vulnerability Scanning
Vulnerability Scanning
Riverstrong utilizes cutting edge scanning tools to detail information about system vulnerabilities based on their current version, configurations, installed applications, extensions, open ports, and more. This information is reported in near-real time to our security staff and routed to our system engineers & support personnel for remediation to ensure your systems are protected.
Meet Matthew Buehlmann
Senior Cybersecurity Lead
Matt Buehlmann joins the Riverstrong team as our Senior Cybersecurity Lead, entering the position with 9 years of experience in the IT field and a focus in security for the last 7. During this time, he has worked as a V-CISO, consultant, analyst, and auditor for both federal and private organizations. The way Matt sees it, security is a product of business initiatives and should always exist to support these efforts –he’ll enjoy leveraging his skills to keep your data secure.
Join our industry practice leads and strategy consultants for a 30 minute discovery session. During this workshop, we’ll discuss your company’s current state and goals for the next 12 months, examine technical and financial feasibility, outline business objectives, and build the right path.
Contact Us
