Actually, it's the Intel Converged Security and Manageability Engine (CSME), one component of which is the Management Engine. Researchers from Positive Technologies managed to gain access to 2 of the 4 cryptographic keys protecting various parts of this system.
The result: the ability to read and freely modify files on the CSME's internal storage space. In addition, the second key is used to encrypt the Intel AMT password.
Intel has already released corrections. More details here.
ISCG sp. z o.o.
Al. Jerozolimskie 178, 02-486 Warsaw
NIP: 5262798378
KRS: 0000220621
Phone
Business Applications
Business Applications
Business Applications
We support our clients in building or optimizing analytics solutions. We provide services on all key layers of analytics, i.e. data extraction from various data sources, data integration and preparation for analytics, building optimized databases, warehouses and data lakes, and data modeling for analytics.
We help implement and adopt Microsoft solutions for analyzing and presenting data, such as Microsoft Fabric and Microsoft Power BI.
We organize workshops for both technical and business users.
Business Applications
Cyber Security Technologies.
EDR (Endpoint Detection and Response). is an advanced cyber-security tool focused on monitoring and responding to threats in real time on end devices such as computers, smartphones and servers.
EDR uses behavioral analysis, signature engines and AI to detect and block attacks before they happen. Compared to traditional antivirus solutions, EDR offers more proactive protection and Automation of response processes.
It is a key tool that significantly improves the level of security in a customer's infrastructure, especially in the case of distributed infrastructure. It is also an essential tool in the work carried out by Security Operations Center (Monitoring Teams
and responding to cyber threats in the organization).
ISCG offers EDR-class systems of the world's leading cyber security vendors: Microsoft Defender for Endpoints, Checkpoint, Sentinel One, Trend Micro
Cyber Security Technologies.
Implementation of SIEM/SOAR monitoring and response systems [Security Information and Event Management/ Security Orchestration, Automation, and Response] offered by ISCG are advanced solutions that enable comprehensive protection of IT infrastructure.
They integrate data from various sources such as network devices, operating systems, applications, EDR systems, PAM, IAM, and cloud environments, enabling continuous monitoring, threat detection and incident response automation.
By combining SIEM and SOAR, organizations can quickly and effectively manage cyber security, minimizing the risk of attacks and ensuring regulatory compliance. These solutions are used in the daily work of the organization's security monitoring teams -. SOC (Security Operations Center)..
ISCG offers SIEM/SOAR class systems The world's leading cybersecurity vendors: Microsoft Sentinel, IBM Qradar, Elastic
Cyber Security Technologies.
MDM (Mobile Device Management). is a modern solution enabling central management of mobile devices in the company. Implementation of MDM class systems allows remote configuration, monitoring and security of mobile devices such as smartphones, tablets and employee laptops, providing full control over company data.
MDM Solutions protect against data loss or leakage, enable enforcement of security policies, and allow remote locking and wiping of devices In case of an emergency. They also allow the implementation of updates and patches which significantly contributes to the security of the infrastructure. This is a key element of security in remote and mobile work environments.
ISCG offers MDM-class systems The world's leading cyber security vendors: Microsoft Intune, Ivanti Trend Micro Mobile Security, NinjaOne
Cyber Security Technologies.
WAF (Web Application Firewall). is an advanced solution that protects web applications from external attacks, such as SQL injection, cross-site scripting (XSS), DDoS and other most frequently mentioned attacks listed in the OWASP Top 10.
WAF Monitors and filters network traffic, providing protection against known and unknown threats before they reach your applications. With this tool, your applications are safe,
and user data protected.
WAF is a key component of cybersecurity, making applications more resilient to attacks and ensuring compliance
With safety regulations and an absolute must have For an organization with web-based applications.
ISCG offers WAF-class systems The world's leading cybersecurity vendors: Microsoft Azure Application Gateway, Barracuda WAF
Cyber Security Technologies.
Mail Security provides comprehensive email protection against threats such as phishing, spam, malware and zero-day attacks.
The solution monitors email traffic in real time, identifies suspicious messages and blocks dangerous content even before it reaches the mail server, minimizing the risk of data leakage and attacks on IT infrastructure. With advanced filtering and security mechanisms, it ensures secure company communications.
ISCG offers dedicated systems for mail protection The world's leading cybersecurity vendors: Microsoft Defender for Office 365, Trend Micro Email Security, Check Point Harmony Email & Collaboration
Cyber Security Technologies.
XDR (Extended Detection and Response) is an advanced solution that integrates threat data from different systems and layers of IT infrastructure, such as networks, endpoint devices and the cloud, to enable effective detection, analysis and response to attacks. XDR automates monitoring and incident response processes, which increases the efficiency of security operations. Unlike SIEM-class solutions, it features deeper analytics and automation of threat response processes. This solution helps companies proactively manage threats and reduce response times to cyber attacks, raising the level of protection for IT infrastructure.
ISCG offers XDR-class systems from the world's leading cyber security vendors: Microsoft Defender XDR , Checkpoint - Infinity XDR, SentinelOne - Singularity XDR, Trend Micro Vision One XDR
Cyber Security Technologies.
MFA (Multi-Factor Authentication). offered by ISCG is multi-component authentication, which significantly increases the security level of access to digital resources.
MFA requires users to confirm their identity using two or more verification methods, such as SMS codes, biometrics or tokens.
The solution protects against unauthorized access, phishing attacks and ensures compliance with regulations such as RODO, NIS2 and DORA, which minimizes the risk of data breaches
ISCG offers MFA-class systems from the world's leading cybersecurity vendors: Microsoft Azure MFA, Yubico YubiKey, HID MFA, Delinea and ISCG's proprietary solution dedicated to on prem ASA2 MFA environments.
Cyber Security Technologies.
The Passwordless solution offered by ISCG is a passwordless authentication solution that eliminates the need for traditional passwords, increasing security and convenience for users. Identity verification is based on biometrics and cryptographic security keys, minimizing the risk of phishing attacks and data leaks. Passwordless authentication is more secure and intuitive, supporting organizations in eliminating weak passwords and improving productivity
ISCG offers Passwordless class systems from the world's leading cybersecurity vendors: Microsoft Azure Active Directory Passwordless. HID DigitalPersona, Yubico
Cyber Security Technologies.
Cloud security solutions [Cloud security]. offered by ISCG provides protection for data stored and processed in the cloud, minimizing the risk of cyber attacks and data leaks. The system includes mechanisms such as access control, preventive leakage protection and automated incident management. Through the collaboration of various cloud tools, ISCG provides comprehensive security tailored to an organization's needs, helping to meet regulatory and security standards
ISCG offers Cloud Security systems from the world's leading cyber security vendors: Microsoft Defender for Cloud. Trend Micro Cloud One
Cyber Security Services
Risk analysis and management are key to ensuring the security of organizations, especially in the face of increasing regulatory requirements such as NIS2, DORA and RODO. By identifying and assessing risks, companies can minimize the risk of breaches, protect sensitive data and comply with applicable regulations. Implementing effective risk management mechanisms increases an organization's cyber resilience, allowing it to proactively counter threats and limit potential losses.
ISCG offers comprehensive cyber risk analysis and management services, helping organizations identify, assess and minimize IT security risks. Our best-practice-based solutions enable continuous monitoring of risks, implementation of effective security mechanisms and compliance with regulatory requirements.
Cyber Security Services
Vulnerability monitoring and management service offered by ISCG is a service that provides comprehensive identification, assessment and management of vulnerabilities ( including patch management) in IT infrastructure. The goal of this process is to minimize the risks associated with cyber attacks through ongoing monitoring and security updates. This service includes regular scanning of resources, vulnerability assessment, patching and recommendations for future elimination or risk mitigation. In the price of the service, we provide commercial tools from leading manufacturers, so the organization does not incur any additional costs in terms of technology investment.
Benefits of vulnerability management:
Cyber Security Services
The scope of the service includes, but is not limited to.
The end product is a detailed technical report describing all detected vulnerabilities and configuration errors, along with clear recommendations for security departments to improve security and risk management.
We provide the SH service for AD(Entra) on a one-time basis or as a recurring service that is a regular item on the organization's audit schedule.
Cyber Security Services
ISCG provides services in the area of Cloud Security based on Microsoft technologies provide advanced protection for cloud environments based on solutions such as Microsoft Azure and Microsoft 365. Often this type of service begins the process that ultimately finalizes the implementation of a full Security Operations Center. These services include:
Cyber Security Services
Office 365 Health Check is a service provided by ISCG, is a comprehensive analysis of the health of the Microsoft 365 environment. The audit includes verification of security, such as MFA implementation, license management and identification of unnecessary administrative privileges. Specialists also check security in services such as Azure Active Directory, Exchange Online, SharePoint, OneDrive and Teams. The goal is to optimize security and cost efficiency by eliminating unnecessary licenses and adjusting data protection policies.
What do you get?
Areas tested:
Benefits:
M365
Endpoint device management is a key component of any organization's security strategy, and in the Microsoft 365 ecosystem, this is especially important. ISCG, a partner with Security expertise and years of experience in IT infrastructure management, offers end-to-end implementation and configuration of Microsoft Intune, a modern tool for managing mobile and desktop devices.
With Intune, it is possible to manage PCs and mobile devices from one central point, giving you full control over the devices in your company. This allows for effective:
ISCG has been implementing endpoint device management solutions such as SCCM (System Center Configuration Manager) for years, making device management our DNA. This gives our customers the confidence that any Intune implementation will be based on a solid technical foundation and follow best practices. Our unique combination of knowledge and experience allows us to create consistent and secure IT environments.
Creating configuration and security standards is key to ensuring:
As part of the implementation, ISCG focuses on fine-tuning Intune to the organization's requirements. We integrate security solutions, such as Windows Defender, to effectively protect corporate data on users' devices, and support security policy management and compliance processes.
With ISCG as a partner, deploying Intune becomes the foundation for effective and secure endpoint device management, allowing the company to focus on key business objectives with the confidence that their IT environment is secure and optimized.
M365
Moving documents from local file servers or other cloud-based solutions to platforms such as SharePoint and OneDrive is a key part of modernizing any company's IT environment. ISCG offers comprehensive migration services that not only include moving files, but also optimizing their organization and ensuring the highest level of security in the new environment. This allows companies not only to access data from anywhere and from any device, but also to manage information efficiently, securely.
Migrating files to SharePoint and OneDrive requires the use of precisely planned document transfer logic. It is important to preserve the file structure during the migration process and to properly map access to documents in the new environment. ISCG pays particular attention to securing access to data at various levels, from the site level to individual files. This allows organizations to effectively control who has access to certain information, which is essential for maintaining data security.
An important aspect of migration is the classification of documents, which enables the proper management of file confidentiality. For the migration of sensitive documents, ISCG ensures the implementation of advanced mechanisms to protect against data leakage. ISCG's experience in working with classified data (access level 3) is crucial here, as migration of such sensitive information requires not only technical competence, but also appropriate procedures to ensure data integrity and security.
The introduction of SharePoint and OneDrive also makes it possible to implement advanced auditing mechanisms to monitor user activity against specific files and sites. These technical safeguards not only protect data from unauthorized access, but also enable rapid response to potential security incidents. In the context of today's cyber threats, this approach to document management and migration is invaluable.
In summary, ISCG, with its experience and expertise, provides secure, efficient and best-practice file migration to SharePoint and OneDrive, which supports not only the flexibility of teamwork, but also the highest level of data protection in the company.
Azure
We provide professional maintenance services for Azure and On-premise environments, drawing on years of experience in managing large infrastructures for 50,000 users and several thousand servers. Our distinguishing feature is our support for classified networks and secret systems, thanks to our relevant certifications and NATO vendor status. We offer 24/7 global support and manage infrastructure in Data Centers around the world.
By opting for our services, you will focus on key aspects of your organization's operations, minimizing the risk of downtime and benefiting from advanced technologies and best practices. Outsourcing to ISCG also saves on hiring and training your own IT staff, allowing you to allocate resources more efficiently and invest in strategic growth.
Our comprehensive approach to infrastructure management, backed by experience in handling the most demanding environments, guarantees security, reliability and cost optimization. By working with us, you will gain confidence that your IT infrastructure is in the hands of experts who will ensure its uninterrupted availability and high performance.
Azure
For any organization, the correctness of directory services is crucial, ensuring consistency and security in the management of identities and access to IT resources.
We provide comprehensive 24-hour support services for Active Directory, covering 2-3 lines of support. With advanced knowledge and experience in the field of Identity and Access Management, our team of specialists provides the highest quality of services.
In addition, we perform Active Directory audits, both one-time and regular, which are key to maintaining optimal configuration and security. Our audits allow us to detect security vulnerabilities, check regulatory compliance and monitor system performance. With regular reviews, it is possible to react quickly to changes in the organizational and technological structure, which minimizes the risk of unauthorized access and ensures business continuity
Azure
Customers often neglect regular reviews and audits of their cloud environment, leading to gaps in cloud management procedures and standards. ISCG ensures policies are updated and best practices are implemented, significantly improving security and efficiency.
We evaluate configurations and management policies on the Azure platform, identifying gaps, incompatibilities and risks. Based on the analysis, we develop recommendations for improving security, efficiency and compliance with best practices. We help implement these changes and monitor their effectiveness, regularly updating management policies.
Azure
Azure
Business Applications
Infrastructure
We support our customers with a well suitable Backup system that will guarantee reliable backup of the environment. We work with leading brands on the market like Barracuda and Veeam.
Infrastructure
Infrastructure
Infrastructure
Infrastructure
Infrastructure
Azure
Using Microsoft's best practices, guidelines and tools, we prepare a reference architecture for the solution in Azure, including, among other things, a network diagram, access and user identity management, failover security, encryption and monitoring of the environment and data.
Implementing this architecture enables efficient infrastructure management and operational optimization, while ensuring high data availability and security.
Cyber Security Services
Cyber Deception is a cutting-edge security strategy that relies on the creation of fake environments, traps and false resources to mislead cybercriminals. It allows organizations to effectively detect attacks and learn from attackers' behavior before they can do real damage. This allows for early detection of threats that traditional security systems (NGFW, NDR) may miss. With confusing paths and attractors, attackers are guided to controlled locations, giving them time to react, minimizing potential damage. With Cyber Deception, we can detect attacks earlier, reduce risks and losses by engaging cybercriminals in attacks against false targets, better understand attackers' actions through analysis in a controlled environment, and increase security by complementing existing security systems in the infrastructure.
Modern workplace
We offer support in the development of the Microsoft Teams environment to make it as effective as possible for employees and at the same time safe for the organization.
Our services include automating the creation of assets, such as feeds, groups, sites and tabs, according to company policies, ensuring consistency and compliance with internal standards. We also provide standardization of descriptions and metadata to facilitate organization and information retrieval. We review current and archived resources, helping to optimize workspace, and manage access for employees and external visitors, ensuring compliance with security policies.
Modern workplace
We offer comprehensive HR process digitization solutions that will allow your company to optimize and automate key areas of HR management.
Our services include digitizing processes such as recruitment - from automating candidate management, to digitizing onboarding and offboarding, to implementing effective training management systems. We also help with electronic leave management, the implementation of advanced 360 employee assessment tools, and the full digitization of HR documentation, allowing easy access to employee data and reducing paper documents.
Our solutions not only improve the operational efficiency of the HR department, but also support better workflow, regulatory compliance and improved employee experience.
Modern workplace
We offer a comprehensive and secure implementation of Microsoft Copilot in a Microsoft 365 environment, providing full support at every stage of the process.
Our services include detailed configuration of the tool, taking into account the specific requirements of your organization, and assistance in meeting the highest standards of IT security and compliance.
In addition, we support the adoption of Copilot by employees, offering training and support in integrating it into daily work processes. We also provide long-term maintenance of the solution, including regular backups and monitoring to ensure business continuity and data security.
Modern workplace
We offer implementation of advanced chatbots based on Microsoft Azure AI, Copilot and Microsoft Teams technologies to improve communication and process automation in your company.
Our solutions enable the creation of intelligent assistants to help with customer service, employee support and the automation of administrative tasks. Through integration with Microsoft Teams, chatbots can act as virtual assistants available within daily work tools, providing quick responses, technical support and performing routine operations.
The use of Azure AI and Copilot guarantees continuous learning and customization of chatbots to meet the specific needs of your organization.
Business applications
Business Applications
We support our clients in implementing or optimizing IT governance for Microsoft solutions and technologies. We offer both in-house services developed on the basis of many years of experience and ready-made partner solutions to facilitate and accelerate the implementation of governance.
Business applications
M365
Regular reviews of your Microsoft 365 environment are key to maintaining compliance with best practices and security standards. Our audit offerings, performed by ISCG, provide a thorough analysis of your Microsoft 365 configuration, identifying security gaps, regulatory non-compliance and other risks.
With a Microsoft 365 audit, you gain configuration optimization that maximizes the efficiency of your environment. You can save on unused licenses - up to 40% in costs. Additionally, you'll increase data security by focusing on protecting your business from threats.
Our audits focus on key areas such as analyzing redundant privileges and evaluating phishing and spam protection policies. Based on the results of the audit, we develop detailed recommendations for improving security, performance and compliance, and then help you implement these changes. Upon completion of the audit, you will receive a detailed report to help you improve security, remove unused licenses and implement best practices in Microsoft 365 management.
M365
ISCG offers a comprehensive service for developing and maintaining cloud management standards, with the goal of improving the security and efficiency of Microsoft 365 environments. Customers often neglect regular reviews and audits, leading to gaps in procedures and standards.
Our team of experts performs a detailed assessment of configurations and management policies, identifying gaps, incompatibilities and risks. If necessary, we use third-party tools such as Simone Cloud and Microsoft Score to help align configurations with applicable standards, such as Baseline and CIS.
We prepare and document the key procedures that are necessary to properly manage a cloud environment. We regularly review and update this documentation to ensure it is in line with best practices and changing requirements.
Based on the analysis, we develop recommendations for improving security, efficiency and compliance. We help implement these changes and monitor their effectiveness through periodic updates to management policies.
With our service, customers can rest assured that their Microsoft 365 environment is compliant with best practices and properly secured. When you work with ISCG, you get a partner who cares about the growth and security of your cloud business.
M365
As a Managed Services partner, we specialize in comprehensive maintenance of Microsoft 365 environments for numerous clients, including large organizations with thousands of users. Our offering includes all Microsoft 365 packages, allowing companies to focus on their business, leaving technology issues in the hands of experts.
Many organizations face difficulties due to insufficient competence to manage their environments, which can lead to misconfigurations and serious data security problems. Customers often overlook important issues, which can generate risks.
With dedicated first, second and third line support teams, we provide comprehensive support. Our Microsoft 365 support operates 24/7, 365 days a year, allowing us to resolve issues quickly. We serve customers in 26 countries, offering advanced assistance for more complex issues. With our global reach and fast response time, we minimize the risk of downtime and ensure uninterrupted continuity of your Microsoft 365 services.
As part of the contract, we provide clients with the necessary data and reports with recommendations for changes in the environment, as well as FinOps data. We regularly discuss this information with the client, which allows us to jointly develop the competencies of local teams.
M365
ISCG offers comprehensive data backup and archiving solutions for users using Microsoft 365, covering services such as SharePoint, Exchange Online, OneDrive and Microsoft Teams. Our approach guarantees full data security and quick access to backups in case of data failure or loss.
As part of our services, we offer backup of both data and settings of the Microsoft 365 environment. Both of these functionalities are crucial, especially in the context of regulations such as the FSA, which require business continuity and auditability. Data backup allows you to recover information after a disaster, such as a ransomware attack or other incidents. Configuration backup allows restoring the environment to a stable state and auditing the changes made, making it easier to identify deviations from recommended configurations.
We use proven tools such as Veeam, CodeTwo, Barracuda and CoreView to ensure effective data management. CoreView provides advanced analytics and reporting capabilities, enabling better license and security management in a Microsoft 365 environment.
ISCG uses Simeon Cloud solutions, which offer advanced configuration management features. This tool allows you to save environment settings and compare them with recommended CIS and baseline configurations. This makes it easy to identify deviations and receive recommendations for optimization. Simeon Cloud also allows you to track the changes you've made, which increases transparency and control. Users can create backups of their configurations and manage changes, as well as restore the full configuration from a specific day, which is extremely useful in emergency situations.
ISCG provides comprehensive and secure data backup and Microsoft 365 configuration solutions, enabling organizations to effectively manage their resources and ensure business continuity under all conditions.
Correctness of directory services is crucial for companies to ensure consistency and security in managing identities and access to IT resources. Improperly managed directory services can lead to security vulnerabilities, unauthorized access, and performance and regulatory compliance issues.
We have advanced Microsoft specialization in Identity and Access Management, so you can be sure of the best experience from our engineers. We offer a comprehensive Entra ID (formerly Azure Active Directory) implementation service for organizations with a scale of 50-100 thousand users, as well as smaller companies. With extensive knowledge of directory services and integration with various versions of legacy systems, our implementations are efficient and reliable. We support multi-location projects and integration of different domains, allowing for centralized management of access and identities.
We also perform one-time or regular Active Directory (AD) audits, which are essential to ensure that the configuration remains optimal and secure. Audits allow you to detect and address potential security vulnerabilities, check compliance with internal and external regulations, and monitor system performance. Regular reviews also enable you to respond quickly to changes in your organizational and technological structure, minimizing the risk of unauthorized access and ensuring business continuity.
M365
M365
M365
As a Microsoft Bill Direct ISCG provider, we offer Microsoft 365 licenses at attractive prices, supporting our customers to effectively manage their cloud resources. Our licensing optimization consulting allows you to maximize the use of available resources.
In addition, we establish close relationships with our clients, enabling them to benefit from the expertise of our best architects. We offer continuous 24/7 support services, which gives our clients a sense of security. As a partner with the right expertise, we monitor their environment, catching potential threats and responding to them quickly. The Microsoft 365 platform processes business-critical information, so it deserves the special attention and care we provide to our customers.
M365
We offer a comprehensive training program on managing the Microsoft 365 platform, led by a top MVP architect in the area of this technology. Our courses focus on key aspects such as managing licenses, permissions and data security. Participants will gain the knowledge necessary to effectively manage their M365 environment, allowing them to optimize processes and increase productivity.
We particularly focus on the Copilot for Microsoft 365 tool, which supports task automation and facilitates daily collaboration. Through sessions led by an expert, participants will learn not only about the tool's capabilities, but also about the myths and facts associated with it. They will learn which features work effectively and which still need to be refined, allowing them to have realistic expectations and be better prepared to use the tools in their daily work.
Training is customized to provide the practical skills and competencies needed to effectively manage the platform and protect data
Azure
We offer comprehensive services to reduce costs and increase efficiency in Azure cloud environment
Our service includes a cost audit and resource utilization analysis, which will allow us to identify areas for optimization. We will focus on monitoring workloads, optimizing test environments and reducing the number of virtual machines.
In addition, we will migrate from the Pay-As-You-Go model to long-term bookings, which can save up to 50%.
Azure
Using Microsoft's best practices, guidelines and tools, we prepare a reference architecture for the solution in Azure, including, among other things, a network diagram, access and user identity management, failover security, encryption and monitoring of the environment and data.
Implementing this architecture enables efficient infrastructure management and operational optimization, while ensuring high data availability and security.
Azure
Using Microsoft's best practices, guidelines and tools, we prepare a reference architecture for the solution in Azure, including, among other things, a network diagram, access and user identity management, failover security, encryption and monitoring of the environment and data.
Implementing this architecture enables efficient infrastructure management and operational optimization, while ensuring high data availability and security.
Azure
We deliver advanced data backup configuration to the cloud, with a focus on security, efficiency and compliance with the best market standards. Our approach includes precise governance preparation, robust procedures and integrated processes, supported by the latest tools.
We design a backup architecture, tailoring it to your organization's specifics, and then configure backup solutions according to your strategy. We implement automated backup mechanisms and monitor processes in real time, ensuring data integrity and quick detection of problems. We regularly test the recovery process to ensure that backups are complete and effective.
Azure
Azure
Azure
Azure
Using Microsoft's best practices, guidelines and tools, we prepare a reference architecture for the solution in Azure, including, among other things, a network diagram, access and user identity management, failover security, encryption and monitoring of the environment and data.
Implementing this architecture enables efficient infrastructure management and operational optimization, while ensuring high data availability and security.
Azure
