The client is a global IT solutions and Services organization. It has diverse IT Infrastructure spread across the globe. The client has 14 sites across the globe and these sites are connected by high-speed data links.

The client has an ecommerce infrastructure, which includes firewalls, routers etc. The client wanted to implement an Intrusion Detection System to proactively monitor potential intrusions/ intrusion attempts into the company's internal resources. After initial meetings and negotiations, the client has decided to place the order on Wipro.

The Client's setup includes business critical applications and servers. These servers and applications cater to business services and applications like Web server, e-mail, SAP, Human resources applications, online learning portals etc.

Although IT security aspects were in place by use of different security measures such as Security Policy, Firewalls, Antivirus, log analysis on security products etc. there was no proactive monitoring in place. The client was looking at the following gains out of the implementation of the Intrusion Detection System.

	24*7 Real time monitoring of network intrusion attempts
	24*7 Real time monitoring on critical hosts for intrusive attempts
	Automated Incident handling mechanism
	Automated database update mechanisms for latest vulnerabilities
	Centralized monitoring and management

The Security experts from Wipro reviewed the present architecture and had discussions with the client to identify critical hosts and network segments that needs to be monitored for intrusion. After doing an analysis by considering business criticality aspect for 14 locations across the globe, the security team has selected a best of the breed Intrusion detection product i.e. RealSecure IDS to satisfy the client's need.

In a phase wise project execution, Wipro carried out deployment of network sensors [to monitor business critical network segments] and hosts sensors [to monitor business critical hosts] in the first phase.

In the next phase we have fine-tuned the signature set used for monitoring the list of intrusion detection attempts on every sensor. Based on the nature and expected intensity of intrusion attempts, wipro security experts have configured the automated responses through RealSecure management console.

In the third step, Wipro security experts have recommended necessary changes in network traffic flow in order to achieve desired level of security.

Click here to view architecture diagram of Real Secure IDS Implementation