Cyber Hawk™

Managed Security grew 400% to $30B in 2020.  What are you waiting for?

Security is top of mind for just about everyone today.  But offering sophisticated security solutions usually requires a substantial investment in additional technologies and headcount. So most MSPs settle for the same basic security offerings — firewall, anti-virus, spam filter.  What if you could offer a security service that lets you stand out from the pack, is easy to deploy, and makes you money too?

 

More than 70% of all cybersecurity incidents today are the result of internal security issues that no firewall or anti-virus could have prevented.  What you need is Cyber Hawk so you can begin offering new, high-value INTERNAL security services to all your clients.

 

Cyber Hawk is your enabling technology for offering high value cybersecurity services. A base Cyber Hawk subscription includes 50 client licenses to run an unlimited number of scans at each site (up to 250 computers). For larger sites you can use multiple licenses. Additional licenses can be purchased for just $9.99 per month (see license terms for details). Once deployed, Cyber Hawk scans a network, detects security threats, and alerts various stakeholders.  Cyber Hawk will help you identify new security projects, differentiate your services from the competition, and create “stickiness.”  It also provides a “double check” to ensure anti-virus and patching are working and to discover network misconfigurations.  Best of all, Cyber Hawk opens up new revenue streams as customers opt into higher value security plans–as much as 20% or more.

 

Cyber Hawk combines machine learning and intelligent tagging to identify anomalous activity, suspicious changes and threats caused by misconfigurations. Cyber Hawk also comes value-packed with everything you need to sell and deliver out-of-the-box cybersecurity.  You’ll appreciate the brandable, dynamic, built-in marketing material to help you position and sell your new security services with default Service Plans, Product Catalogs, and end-user slide shows.  We’ve even included a Managed Security Service Agreement that auto populates with the details of the security services you will be delivering.

 

A small investment in Cyber Hawk will yield a huge return in increased revenue, competitive differentiation, and serious peace-of-mind for your clients.

“Smart” Recommendations

Cyber Hawk automatically scans the client’s network searching for internal threats that occur behind the firewall. When it detects a potential security breach, Cyber Hawk generates an alert and delivers details on the specific threats, accompanied by a set of easy-to-follow, step-by-step instructions on how to resolve the problems Cyber Hawk has discovered. These recommendations help speed the remediation process.

 

In addition, Cyber Hawk automatically generates weekly and monthly summaries of the issues and insider threats it has identified. These recaps create a regularly updated set of reports that describe the potential threats in a way the client can easily consume.  The reports also include threats that were detected but not alerted on because they are not in the client’s current security plan.  Armed with this information, review these with your client, and where appropriate upsell the client into a more comprehensive security plan.

Built-in Breach Detection Technology

Cyber Hawk incorporates built-in breach detection technology that finds footholds that your anti-virus can’t. Detect keyloggers, trojans, spyware, unauthorized registry changes, or other malicious activity. The standard Breach Detection System is automatically deployed for all your Cyber Hawk sites. It performs a weekly scan and will let you know if it finds any lingering malware footholds that typically go unnoticed by anti-virus software, as they lie in wait on a client network and postpone their attack until a specified time in the future. Your weekly report includes summary information about the nature of the discovered issue.

 

Cyber Hawk notifies you through email or direct PSA integration. The alerts can also be viewed and managed online through the RapidFire Tools portal.

Cyber Hawk makes it easy for you to do the following:

Expose Unauthorized logins or attempts to restricted computers

Identify a new user profile suddenly added to the business owner’s computer

Find an application just installed on a locked down system

Get alerted to unauthorized wireless connections to the network

Notice if a new user was just granted administrative rights

Detect an unusual midnight log-in for the first time by a day-time worker

Find sensitive Personal Identifiable Information (PII) stored on machines where it doesn’t belong

Detect breaches that make it by the firewall and anti-virus

Expose hacker footholds along with instructions on how to remove

Security is a team sport. Cyber Hawk gives us an edge over the competition by providing clients with a convenient way to work with us by cutting through the noise and creating a clear, concise summary of daily network security concerns.

Angel Rojas, President, DataCorps Technology Solutions

What we like most about Cyber Hawk is that is allows us to quickly see things we can make even more secure with ease!

Steve Quinn, CEO, BIT

Cyber Hawk is hands down a great product. With this product I get to play with the big boys.

Phillip Waite, CTO, EPS Networks

Cyber Hawk allows us to utilize a product we are already familiar with into an automated monitoring system, providing extra value and convenience for us and increased security awareness for our clients.

James Babiak, Enterprise Network Engineer, SouthTech

Cyber Hawk gives us the opportunity to provide our clients with the protection they need for their networks to ensure that they are safe from intrusions, malware and employee changes.

Matt Larson, Network Service Manager, Hagan Business Machines of Meadville, Inc

Frequently Asked Questions

  • What are insider threats?

    An insider threat is the possibility of an organization’s insiders — such as employees, vendors, suppliers, consultants and business partners — misusing their authorized access or organizational know-how to harm the organization’s networks, systems and data. An insider threat can be executed unintentionally or with malicious intent. Either way, it compromises the confidentiality, availability and integrity of an organization’s systems and data. An organization can leverage an intelligent tool such as Cyber Hawk that automatically scans a network for internal threats out of the purview of a firewall.

  • What is an example of an insider threat?

    Insider threats can be largely divided into three types:
    • Malicious insiders: Individuals who maliciously and intentionally abuse legitimate credentials to typically steal sensitive information for financial or personal incentives. For example, a disgruntled employee can copy your organization’s sensitive data before joining a competitor.
    • Careless insiders: Also called negligent insiders, such individuals are ‘innocent pawns’ who unknowingly expose their organization’s IT environment to external threats. For example, an employee can unintentionally harm their organization by clicking on a malicious link.
    • A mole: An outsider who manages to gain insider access to an organization’s network by posing as an employee or partner. For example, an employee about to leave your organization can create a duplicate account to gain access to your network. This account could still give the employee "insider" access if you do not identify the account and deactivate it.

    Cyber Hawk uses "smart tags" that allow it to adapt to each unique IT environment. Smart tags enrich the detection system by adding information about specific users, assets and settings. These tags help Cyber Hawk gain intelligence about what it detects ensuring the right type of insider threat is detected in your network. As a result, over time, highly accurate alerts are generated since more potential threats and fewer false positives are identified.

  • What are insider threat indicators?

    A list of indicators can help your organization identify individuals who could be potential insider threats. These indicators primarily have to do with an individual’s behavior and/or digital activity. Here’s a list of the most common indicators:

    • Indicators related to behavior
      • Expressing dissatisfaction with the organization
      • Attempting to circumvent the organization’s security
      • Regularly working beyond working hours
      • Showing resentment toward co-workers
      • Routinely trying to violate the organization’s policies
      • Openly contemplating a resignation or discussing new opportunities
    • Indicators related to digital activity
      • Logging into enterprise applications and networks at odd hours
      • Attempting to copy large amounts of data
      • Accessing resources irrelevant to the job position
      • Accessing systems or data they aren't authorized to
      • Using unauthorized devices
      • Deliberately looking for sensitive information
      • Sharing sensitive information outside the organization

    Cyber Hawk combines machine learning and intelligent tagging to identify insider threat indicators such as anomalous activity, suspicious changes and threats caused by misconfigurations.

  • What is insider threat detection?

    Insider threat detection refers to the process of detecting and identifying persons who might present an insider threat risk due to their concerning behaviors. An organization can use both human and technological elements for insider threat detection. The process of threat assessment usually follows insider threat detection to compile and analyze information about a person with the possible interest, motive, intention and capability to harm the organization.

    Cyber Hawk has a built-in breach detection technology that finds footholds that an organization’s antivirus can’t. It detects keyloggers, trojans, spyware, unauthorized registry changes or other malicious activity.

  • Why is it important to detect an insider threat early?

    Detecting insider threats early is extremely crucial for organizations of all sizes since insiders know exactly where your organization’s sensitive data lives and how it can be accessed. You wouldn’t want a thief/stranger to know the entire layout of your house and the location of all your valuables, would you? Therefore, whether an insider has malicious intentions or not, it’s important to implement a strategy that can help you get an early warning or indication about an insider indulging in risky or out-of-policy behavior.

    Along with instant alerts, Cyber Hawk also automatically generates weekly and monthly summaries of the issues and insider threats it has identified. These recaps create a regularly updated set of reports that describe the potential threats in a way you can easily understand.

  • How does insider threat detection work?

    An insider threat management strategy is mostly implemented using one or more insider threat detection tools that monitor insider behavior, issue timely alerts and assess the alerts to eliminate false positives. Such tools can utilize:

    • Machine learning (ML) to analyze and prioritize the most relevant alerts
    • User and event behavioral analytics (UEBA) to detect any deviation from normal data access activity
    • Database activity monitoring to identify policy violations

    Along with instant alerts, Cyber Hawk also automatically generates weekly and monthly summaries of the issues and insider threats it has identified. These recaps create a regularly updated set of reports that describe the potential threats in a way you can easily understand.

  • What features should insider threat detection include?

    An effective insider threat detection software must at least be able to:
    • Expose unauthorized logins or attempts to restricted devices
    • Identify a new user profile added to the key systems such as the business owner’s computer
    • Find an application installed on a locked-down system
    • Generate alerts when unauthorized wireless connections are established with the organization’s network
    • Record every time a new user is granted administrative rights
    • Detect unusual logins from an employee
    • Identify whether sensitive data is being stored on machines where it doesn’t belong
    • Detect breaches that have made past the firewalls and antivirus software
    • Expose potential hacker footholds inside an organization’s IT environment

    Cyber Hawk is packed with all the above features and more. Most importantly, it lets you view and manage everything from an online portal.

LET US SHOW YOU HOW IT WORKS!

Want to learn more or get pricing? Use the GET A QUOTE. If you’re ready for a customized one-on-one demo, use the REQUEST DEMO button below.