SXi CyberWatch Solutions™

The DoD and NSA allow classified information to be transmitted over wired and wireless connections, and public, private and partner networks, using dual encryption technologies (such as Cisco and Aruba VPNs), one layered inside the other. The NSA also approves combinations of solutions that include a layer of VPN combined with encryption provided by Wi-Fi, TLS, or MACsec, following specific guidelines. Our de-centralized solution, SXi CyberWatch™, is a threat prevention, detection, and incident management and response platform, capable of protecting systems whether on-premises, virtualized, cloud-based, or hybrid computing environments.

Our US-based personnel have security clearances up to and including Top Secret. We work vigilantly to protect you and our nation’s most critical assets 24/7/365.

SXi CyberWatch™ is rigorously tested to meet regulatory requirements, including the NIST Risk Management Framework and proposed Department of Defense mandates for Safeguarding Controlled and Unclassified Defense Information.

Log-Analysis

Our Mother of Pearl (MOP) server component uses a heuristic approach to intrusion detection. Its regular expression engine analyzes collected log data using the system agents and looks for indicators of compromise.

Intrusion Protection

SXi CyberWatch™ agents scan the monitored systems for malware, rootkits, and suspicious anomalies. The agents detect hidden files, cloaked processes, unregistered network listeners, and inconsistencies in system call responses.

Vulnerability Detection

Deployed hardware and software agents collect and send software inventory data to the server, correlating with continuously updated CVE (Common Vulnerability and Exposure) databases to identify security flaws, exploitable weaknesses, and vulnerable software.

Configuration Assessment

Using automated processes we monitor system and application configuration settings to ensure compliance with security policies, standards, and hardening guidelines. System Agents perform continuous scanning to detect applications known to be vulnerable, unpatched, or insecurely configured.

Incident Response

We provide out-of-the-box active responses to countermeasures that address active threats- such as blocking access to a system from the threat source when specific criteria are met. In addition, we remotely run commands and system queries (Using the SXi CyberSafe™ Access Product) that identify indicators of compromise (IOCs), perform live forensics, and incident response tasks.

Regulatory Compliance

We configure custom tools complying with industry standards (e.g., HIPAA, SOX, PCI-DSS, GDPR, NIST, FedRAMP, DoD and executive orders and presidential directives.

Cloud Security

We manage Cloud Infrastructure security at an API level, using integration modules pulling security data from well-known cloud providers. We provide a rich set of rules that constantly assess the configuration state of your cloud environment, quickly alerting and notifying your team of exploitable weaknesses.

Black Pearl SXi™ Secure EUD

We have developed a patented next-generation out-of-the-box solution meeting NIST requirements for Safeguarding Controlled and Unclassified Information (“CUI”) and the NSA Commercial Solutions for Classified inspired mobile access and multi-site capabilities package. These standards are currently mandated by all Defense Industrial Base Contractors to protect federally controlled and classified information.