Synoptek IT Security Program
The CSAC Excess Insurance Authority (EIA) issued a request for proposal for cybersecurity training services. In an attempt to bring a greater value to not just CSAC EIA members, but to all California counties, the CSAC Finance Corporation and Synoptek are partnering to offer a human firewall training program and fraud assessment.
The human firewall program is a training program whereby a comprehensive approach is initiated that integrates baseline testing, using mock attacks, engaging interactive web-based training, and continuous assessment through simulated phishing attacks to build a more resilient and secure organization. Throughout the process, security personnel will continue to advise on ever changing threats and recommended actions. The outcome of this is a training program for employees that are shown to create vulnerabilities in the network through their reactions to the simulated attacks. User Training will provide on-demand, interactive, engaging training with common traps, demonstrations and new scenario-based ‘Danger Zone’ exercises. Training Modules include:
- Security Testing and Training
- Basic Security Testing and Training Course
- Ransomware for Hospitals
- Strong Passwords
- Handling Sensitive Information Securely
- Mobile Device Security
- Basics of Credit Card Security
- PCI Compliance Simplified
- Financial Institution Physical Security
- GLBA Compliance Course
Additional server fraud security is provided via another proprietary Synoptek program that uses machine-learning capabilities to gauge server activity and find anomalies in normal activity that could indicate fraudulent activity. This service provides network based anomaly detection without rules or signatures, and detects the subtlest of changes within networks, servers, and end-user activity. This solution looks from the inside out, and leverages machine to machine learning to detect threats before they become a larger issue for the agency. This solution provides weekly Threat Intelligence Reporting and monthly reviews of the findings with remediation guidance for each incident to assist an agency in identifying managed security services that they may require.