Enterprise Security

Service Description

Enterprise security consists of policies, network hardware and software provisions to prevent and monitor unauthorized access, misuse, modification, or denial of a computer network and network-accessible resources; traffic going both in and out of the network with a host of protective features including intrusion detection and prevention (vulnerability monitoring), anti-bot, anti-malware, application and URL filtering and VPN services. Major categories of service include:

  • Firewall security is the first line of perimeter defense for the State network. Protection exists from the Internet and between the distinct customer base of State government, K-12 education, and political subdivisions. Agency required changes to the firewall configuration will require the agency security contact submit a Firewall Configuration Request.

  • Intrusion Detection Systems (IDS) (attack mitigations) are in place to proactively monitor and detect inappropriate activity on the network.

  • Monitoring (security logging) of statewide WAN is systematically conducted, managed, and supported on a 24/7 basis.

  • Virtual Private Network (VPN) solutions exist for both client-based and point-to-point (site to site) solutions. This solution does require a VPN Configuration Request.

Remediation Assistance
is provided by training personnel whenever a security issue is discovered.

Customer Benefits

Through various layers of security implemented by security policy, network hardware and software, every system on the network is protected without need for end user intervention. Agency cost savings is realized through reduced expenses for personnel, equipment and software associated with monitoring and maintaining the service. This service offers network security able to detect and block sophisticated attacks by enforcing security policies stopping threats at the network perimeter and supporting rapid detection and resolution of security problems. It protects the network infrastructure from damages and security breaches. Additionally, the practices and security posture within the state is leveraged to meet the security demands on agencies through their system audit requirements. Support for this service is provided by ETS staff skilled and experienced in planning, provisioning, maintaining and troubleshooting the service.

Customer Responsibilities
The agency will provide the appropriate knowledgeable resource(s) to collaborate with the security team to ensure appropriate system access. In some circumstances, the agency will need to configure resources to provide proper logs to the logging software.

The agency must manage and maintain an authorized internal security contacts list of individuals, within the agency, who are able to authorize any and all security changes for their agency. This list should be up-to-date, regularly audited for changes, and shared with ETS to ensure consistency.

If any network reconfiguration is needed to add or remove filters based on changed conditions due to threats or business needs, or there are any issues, the customer needs to submit a request to the Technology Support Center at 307-777-5000. For any updates or changes to the firewall only the agency’s security contact may submit the following Firewall Configuration Request, please complete and provide necessary information.

In regards to VPN access, either starting the service or adding sites or individuals, any additional users will need to have valid State network credentials and an Active Directory (AD) account for access, and the agency will need to provide and maintain a list of sites needing VPN access. The agency’s security contact or approved requestor must also submit a VPN Configuration Request.

ETS Responsibilities
ETS will manage incident resolution services through the Technology Support Center utilizing the ticketing system to route the incident to appropriate technical staff to ensure quick response, tracking and resolution. Support is provided by ETS staff skilled and experienced in planning, provisioning, maintaining and troubleshooting incidents.

ETS will provide vulnerability monitoring for both software and hardware and have trained staff to provide vulnerability analysis. Furthermore, ETS staff will provide hardware and software necessary for security logging and have trained staff available to evaluate the logs. Depending on the severity of an attack and the mitigation strategy utilized, which will be determined on a case by case basis, ETS will provide trained staff to assist with attack mitigation, and in some instances, possibly provide hardware and/or software necessary for attack mitigation.

Technicians will also be responsible for routine maintenance for these services. Moreover, ETS will provide service monitoring/alerting as well as service provisioning and implementation.

Service Level Objectives
The following criteria are the quality of service benchmarks established as the expected performance goals of this service.

Category Evaluation Criteria  Target
Processing Firewall configuration requests will be completed within 15 business days, maximum, from the time request received.  15 business days
Incident Responsiveness To respond to intrusion detection, Identify the type and
source of attack, if necessary, notify customer contact of event, respond accordingly to suppress negative impact.
 Immediately as detected

Maintenance Schedule
It is our intent to provide consistent system availability and communication for our customers. ETS has established three maintenance windows to complete the work we need to do in order to maintain our systems and services, while also limiting the amount of time that systems or services are unavailable to our customers.

Weekday   Start time End time  Type
Sunday 5:00 am 7:00 am Any Enterprise - non network related
Monday  2:00 am  6:00 am Network only
Thursday 4:00 am 6:00am Any Enterprise - non network related

Outages will be minimized when possible. An agency may make a special request to delay maintenance interfering with an event. ETS may also work with the agency to schedule additional time when maintenance will require longer periods to complete.

Weekly ETS Scheduled Maintenance Summaries are available on the ETS Website or you may have them emailed to you by signing up for Notifications.