Based on human-machine intelligence, protecting enterprise-level security! Sangfor launches security hosting service

[51CTO.com original article] In recent years, cyber attacks have become increasingly complex, and external security threats have continued to intensify. In particular, with the rapid development of the digital industry, new security risks continue to emerge, traditional security construction has gradually become ineffective, and corporate security defense has become more difficult. On the other hand, the state attaches importance to and emphasizes the importance of cybersecurity work from the level of legislative norms, and the security compliance supervision of enterprises is constantly strengthening. Obviously, cybersecurity risks have become a problem that must be solved for the long-term development of enterprises.

In order to improve the ability to defend against security risks, many companies choose security hosting services. In this way, they introduce service providers and use their products and technologies to provide support for enterprise security.

At the 2018 Sangfor Innovation Forum held recently, Sangfor officially released the Sangfor Security Managed Service based on "human-machine co-intelligence" for the future. "Sangfor Security Managed Service is an enterprise-level security guardian and a terminator of security threats. Even a group of security experts on site cannot outlast it. While others are still looking for the cause, it has already dealt with it. It takes artificial intelligence as its core, integrates the experience of a team of security experts, and provides security service capabilities based on human-machine co-intelligence." This is how Sangfor Vice President Chen Yanbin introduced the security managed service when releasing it.

[[244303]]

Enterprise security construction mainly faces two major challenges

On the day of the press conference, 51CTO reporter interviewed Li Huanbo, general manager of Sangfor Security Hosting Services. When asked why Sangfor Security Hosting Services was launched, he first analyzed with reporters the two main challenges currently faced by enterprise security construction:

First, security construction is fragmented, and the security effect cannot meet expectations. The security construction of many enterprises is fragmented, with scattered procurement of risk assessment, penetration testing, security operation and maintenance and other security product services. Moreover, the fragmented defense means lead to the lack of real-time monitoring mechanism, and risk discovery is not timely;

Second, the security team is not perfect and the security service effect is not satisfactory. Enterprises lack security talents, especially senior talents. Even if they outsource security service personnel, they cannot effectively respond to new threats due to their uneven capabilities. In addition, the periodic intervals of traditional security services (once, month, quarter, year) are too long to respond to continuous security threats.

Then, he said that in order to solve the above problems and help enterprise users build security, Sangfor launched a security hosting service. Different from traditional security services, Sangfor's security hosting service is not a purely manual security service, but a knowledge-driven security service based on the concept of "human-machine co-intelligence". From security assessment to security capability maturity analysis, to service solution design, and then to continuous security operation, through human-machine collaboration, it can protect the information assets of enterprises 24/7.

What is Human-Machine Co-Intelligence?

What is human-machine co-intelligence? Literally, "human" refers to security experts; "machine" refers to machines, which can be understood as security equipment or systems; "co-" refers to collaboration; and "intelligence" refers to artificial intelligence. The so-called human-machine co-intelligence refers to the collaboration between security experts and machines based on artificial intelligence technology to provide security hosting services for enterprises.

Taking black link detection as an example, the first step is to detect whether there are black links in the web page sample, use the simple algorithm of artificial intelligence to make judgments, and provide feedback after finding abnormal points. Then, a T1-level security engineer will intervene to make judgments and find the real black links. Then, optimize the algorithm model to obtain the first generation of AI detection model. Continue to detect web page samples, repeat the above steps, and adjust the model according to the feedback of security engineers. The second step is to introduce security attack and defense experts to study what hackers do with black links and where the web pages point to, and then add detection methods to the model. Through the continuous training of the model by attack and defense experts, the deep detection capabilities of web page content are continuously added. In short, the model is trained through the continuous cooperation between people and artificial intelligence, and the experience and capabilities of security experts are empowered into the model.

In other words, through a unified cloud security operation center, Sangfor will cloud the capabilities of senior security operation experts and deliver them to clients on demand at any time, allowing more users to enjoy truly senior expert services; by integrating the capabilities of AI and senior experts, it will achieve a security effect of 1+1>2; through automated collaboration, it will effectively integrate and deploy resources such as users, security experts, new technologies, threat intelligence, and security infrastructure, greatly improving service efficiency and quality.

Sangfor MSS, a human-machine collaborative managed security service

Sangfor Security Hosting Services

According to Li Huanbo, the security hosting service is a set of systematic, standardized and continuous security risk management and security operation management solutions provided by Sangfor based on two platforms: the Security Operation Center (CvSOC) and the Security Service Platform (SvSOC). It relies on Sangfor's network security components (such as security protection components, risk discovery components, detection and response components, etc.), a three-level security service system (security engineers, senior security operation experts, chief security experts) and six service processes (vulnerability management, unknown threat disposal, policy management, continuous attack confrontation, event analysis and disposal, emergency response) to comprehensively protect customers' business security.

Sangfor's security hosting service can provide a one-stop, all-round protection system, which can effectively help enterprises solve security construction problems. On the one hand, Sangfor's comprehensive network security components can help enterprises effectively avoid problems such as fragmented security construction and insufficient security capabilities; on the other hand, a strong lineup of security experts, combined with continuous protection based on artificial intelligence, replaces repetitive manual work and standardizes front-end delivery capabilities. It can provide unified standard services, thereby making up for the shortage of enterprise security talents and solving the problem of poor security service results caused by uneven talent levels.

[[244304]]

Sangfor Security Hosting Service Application Scenarios

Looking ahead, China's security hosting service market has broad development space

Talking about the development prospects of the security hosting service market, Li Huanbo said that currently the entire security service industry is a relatively mature industry abroad and is still growing rapidly. In foreign countries, the proportion of global security services accounts for about 60% of the entire security construction, while in China it is only 25%, so there is a lot of room for development in the Chinese security hosting service market.

According to the 2018-2022 Global and US Comprehensive Security Services Forecast released by IDC, the global overall market is expected to reach US$69.6 billion by 2022, and will grow at a compound annual growth rate of 9% during this period. Among the four major market segments, security managed services are the largest and fastest growing. By 2022, the market share is expected to be 32.2%, with a compound annual growth rate of 10.2%, exceeding IT consulting, system integration and education and training.

At present, Sangfor Security Services has built business-centric, on-demand security capabilities, providing 7*24H continuous operations, creating a new security service model, and pioneering a security delivery model of pay-as-you-go and pay-for-results, providing users with another option for security construction.

Looking to the future, Li Huanbo said: "Based on human-machine co-intelligence technology, with years of security technology accumulation and persistence in technological innovation, we believe that there will be breakthroughs in the future. We hope to become the leading manufacturer in the domestic security service field in three years. Our goal is to go international!"

Four tips for choosing a secure hosting service

At the end of the interview, the reporter asked how companies should choose appropriate security hosting services. Li Huanbo suggested starting from the following points:

First of all, we need to consider the comprehensive brand strength and service genes of the service provider, take into account the sustainability of the service, and see whether it is user-centric and regards solving user needs as the company's core value or mission.

Secondly, starting from the service model, choose a service model that matches the actual needs of the enterprise and closely integrate it with the business development of the enterprise to meet the current development situation of the enterprise.

Third, gain in-depth understanding of security service details, such as: technical and personnel strengths in the service, classic cases, manufacturer qualifications, etc.

Fourth, don’t just pursue price. In the security service field, you get what you pay for. Excessive pursuit of price may not guarantee the final effect.

I have something to say

With security threats emerging one after another, no enterprise can ignore security issues. However, the high cost of security equipment and the shortage of security talents have made many enterprises unable to cope with security operations. Introducing security hosting services and using the power of service providers to fight threats has undoubtedly become their first choice. The launch of Sangfor's security hosting services is in line with the trend. Based on more than ten years of experience in the security field and the continuous innovation of product technology, Sangfor will surely create greater value in the future security service field and win the favor and support of more corporate users.

[51CTO original article, please indicate the original author and source as 51CTO.com when reprinting on partner sites]