• Network infrastructure design, purchase, deployment, and management 

• • Only the highest quality products are used from manufactures such as Fortinet and Ubiquiti for network and wireless, allowing seamless management and reliability. 

• Server configure, purchase, deployment, and management 

• • Using resources like NIST's Cybersecurity Framework and drawing on 10 years of experience in banking IT security, FIT configures and hardens servers, Active Directory, Group Policy, DNS, DHCP, and more. Our hardening checklist is a living document that is updated following each vulnerability scan, audit, and exam.

• Workstation/laptop configure, purchase, deployment, and management 
• Microsoft Azure 

• • It's time to embrace cloud computing. Microsoft Azure is secure, scalable, and our optimization proves Azure is a cost effective alternative to on-premises or data center servers. 

• Domain registration support 
• Public DNS management 
• SSL certificate management

• Patch management 

• • Software updates is the first line of defense against the exploitation of vulnerabilities. FIT's patch management deploys Microsoft and third party patches while reporting on the status of all machines. Third party patches include updates on hundreds of applications.

• Health monitoring 

• • Working in concert with our patch management and antivirus solutions, FIT monitors the health of all the servers and workstations in your environment. Based on event criteria that we design alongside you, our solution can monitor for any event and create an alert in our ticketing system. 

• Antimalware

• • Though there are many other tools out there for threat detection and response, antimalware programs still play a foundational role in any security toolkit. 

• Firewall management 

• • FIT has invested heavily in firewall management applications, monitoring, and support. Our team consistently improves upon configurations and hardening policies to ensure the network edge only allows specific and allowed traffic. 

• Aggregate log monitoring

• • Our security analysts will monitor logs from unlimited sources on your network at all hours and notify us if there is any suspected incident. Event sources include Microsoft Cloud, server logs, WMI, firewall syslogs, and much more.

• User onboarding/offboarding management

• • FIT keeps detailed checklists for each client about how to setup new users or terminate users in the environment. Consistency and documentation is important for smooth employee transitions. 

• Microsoft 365 

• • As a Silver Partner with Microsoft, FIT proudly sells, manages, and supports the ever growing application library in Microsoft 365. Through secure configurations, employees can safely use the Microsoft Office Suite, Teams, SharePoint, OneDrive, and more while enjoying the most up to date features.

• Email hosting and management

• • Email his hosted with Microsoft Exchange Online, which provides FIT clients with the most stable and feature-rich email experience.

• Email security and filtering

• • Email is the initial conduit for most security breaches. So, email filtering must be best in
    class. Mimecast features include: 

• • • Comprehensive email security including protection from malware - less social
      engineering attacks, weaponized attachments and malicious URLs.
    • Highly secure and resilient offsite, cloud-based perpetual email archive.
    • Continuity service with RPO / RTO close to zero and a 100% service availability SLA.
    • Full email and attachment scanning to control or block sending sensitive information.
    • Attachment Protection for sandboxing original attachments while converting the
      delivered attachment as PDF.
    • URL filtering send all links through testing for maliciousness. Links are modified to
      send clicked traffic through the Mimecast sandbox for scanning at the time of access.
    • Secure/encrypted messaging
    • Large File Send:
      • Users to send and receive files of up to 2GB, removing large traffic from the email system, without requiring a separate file-sharing service. 
      • Users to create an email as usual, and attach and send large files, just as they do with smaller files. 
      • Administrators to set policies for attachment size; the Mimecast service does the rest.
    • Mimecast plug-in for OutlookTM and apps available for iOSTM, AndroidTM, Windows Phone and BlackBerry mobile devices.
  • Other email security configurations automatically configure include SPF and DKIM. DMARC is available at a small monthly cost.

Application support: liaison with vendors for updates, etc.

• Password management 

• • Many accounts are breached because of bad or duplicated passwords. Or maybe you know employees who have passwords written on paper or saved in a spreadsheet. A password management program is important for password hygiene and security. 

• Data Breach Monitoring

• • Email addresses are monitored for when they show up in the dark web. 

• Multifactor Authentication 

• • First and foremost, we configure MFA for Microsoft 365. We optimize the setup to have the least impact on employees while providing the necessary level of protection to block bad actors from signing into Microsoft 365 without the employee's permission. As is possible and acceptable, we also configure other non-Microsoft applications with Single Sign On through Microsoft authentication. 

• Mobile Device Management 

• • Mobile technology like smart phones and tablets have broadened the security footprint needed. With remote workers and personal devices, businesses must have a way to manage company data while allowing for remote productivity. Mobile Device Management through Microsoft ensures company control over company data on both business and personal owned devices. 

• Security Awareness Training

• • There are countless programs and articles concerning the importance of employee training about cyber security at work and at home. FIT is obligated to educate our clients' employees and we do this through monthly phishing campaigns and quarterly security training videos/quizzes. We also try to keep employees informed about current scams and we do all this with the fewest possible interruptions to normal company workflow. 

• Media destruction

• • Hardware storage is destroyed by FIT personnel. Photos and certificates are created for each destruction.

FIT recognizes backup and disaster prevention/recovery as the most important service that we
provide. We have staff dedicated to monitor and manage the backup solutions daily. Our solution backs up multiple times per day and replicates the offsite storage. We offer two different solutions depending on budget a risk.

• Enterprise Unified Backup 

• • Onsite appliance and replicated to cloud storage for 1 year retention.
  • Backups are often scheduled as frequent as hourly.
  • Disaster recovery in the cloud, which is tested in detail annually with application tests
    and documentation.
  • Managed Cloud Backup 

• Microsoft 365 backup
  • Microsoft retains deleted items for up to 30 days. Beyond those 30 days, data is not recoverable. Therefore, backup of data stored online is vital for recovery from accidental deletion of files, users, SharePoint sites, and more. The Microsoft 365 Backup solution includes the following: Mail, Calendar, Contacts, OneDrive, and SharePoint.

• Best Practices Assessment 
• Inventory management 
• Internal Vulnerability Scans 

• • It is important to stay on top of vulnerabilities in the network. Though auditors will find many of these during their discovery process, it is much better to find and remediate those before auditors and examiners show up. FIT uses multiple scanning tools to verify the security of the environment and cloud solutions. After the results, we can begin remediation with your approval.

• Compliance reporting (CMMC, NIST, HIPAA, cybersecurity insurance report)

• • Though FIT does not certify companies for compliance, we do have the tools and expertise to handle self-assessments. A gap report for compliance is helpful in preparation for final certification or for industries that just mandate a self-assessment. 
  • Cyber insurance companies are doubling down on their policy requirements. FIT can
    provide a cyber insurance report as proof that all requirements were met. This report helps greatly in the approval of cyber incident claims. 

• Audit support and tracking 
• Quarterly Business Reviews

Company phone systems have become fully interwoven with other means of communication including audio/video conferencing, email, instant messaging, file sharing, and more. With our remote workforce, phone system looks even less like company phone systems of old and more like all other technology at our fingertips. With this in mind, FIT began the search for a quality and feature-rich unified communication solution. After working with many telecom companies in our region, it became clear that no local company had what we sought. We have a particular set of requirements for any system we support and every company fell short. FIT logged hundreds of hours and tested multiple products seeking the one that met our high standards. 

The following is summarized list of the high standard requirements fulfilled in this unified communication solution. 

• SOC 2 Type 2 maintained by the vendor
• Security and firmware updates installed regularly - the system must be free of
  vulnerabilities. FIT has spent a large amount of time dealing with vulnerabilities on phone
  systems and has found that many phone vendors do not care to remediate the shortfalls.
• High call quality and reliability
• Reliable and easy to use application for smart mobile devices and computers that does not
  depend on the desk phone, but that can interact with the desk phone
• SMS and TXT messaging directly from the computer or mobile application
• Voicemail transcription and delivery by email
• Virtual fax sending and receiving
• Presence detection with additional notes
• Call reporting for call quality and call logs for technical research and/or for department
  managers
• Common business phone features including auto-attendant, hunt groups, group voicemail,
  transfer, conference.
• Custom and easy to configure greetings for auto-attendant and voicemail
• Location agnostic desk phones and computer soft phone applications
• No onsite phone system hardware (no upfront capital expenditures)
• Monthly flat rate per user
• No long distance or individual phone line cost
• Easy payment directly through FIT

You might be unsure about switching phone vendors or you think cloud hosting sounds risky. Contact us before you sign a new agreement. You'll likely find that our solution is more cost effective and much more reliable than any on premises solution or most other cloud competitors. 

Endpoint Detection and Response

• Detects advanced threats including fileless attacks, ransomware, and other zero-day threats in real-time. Its threat analytics and cloud-based event collector continuously monitor endpoints and prioritizes security events into a list of incidents for investigation and response.
• Part of our Cloud Security and Advanced Threat Security platform
• Fully integrated with our Managed Detection and Response (MDR)

Managed Detection and Response

• Monitoring across three attack pillars: Endpoint, Network and Cloud
• Integrations to firewalls, switches, Microsoft 365, Windows endpoints, Apple endpoints, and more
• 24x7 Security Operations Center with security analysts
• Fully integrated with our Endpoint Detection and Response (EDR)