Intrusion Prevention Service

Service Description

Intrusion Prevention Service (IPS) provides a critical defensive layer of security for the campus network that screens network activities for malicious content and can block or prevent those activities. This service option is a fully managed Internet Protocol (IP) based security solution that protects against threats from hackers, viruses and worms that attack customer networks and computing equipment. ITS manages all phases of the service, including consulting for the required policies, implementation, operations, and ongoing configuration management. Service implementation and support include:
  • Consultation regarding service options and security configurations that best fit the customer's needs
  • All required activities to complete service installation
  • A fully managed service
  • Configuration and support of hardware and software components
  • 24 x 7 technical support, including centralized monitoring and management via ITS Network-Security Operations and the ITS Service Desk
  • Customer access to logs, providing visibility to customer network events for the preceding ninety (90) days
  • Customer-defined security posture to meet customer's security requirements
  • Continual tuning of security policies to ensure they are well suited to customer's environment
  • Documented processes for remediation workflow support and incident management
Service components include:
  • Hardware and software components required to provide the Intrusion Prevention Service
Service options include:
  • IPS customers on managed network segments can implement a department-wide policy, providing ingress and egress protection for the entire department against attacks and malware.
  • Site IPS Service 
Security posture is tailored to the specific requirements of the individual network segment, providing protection against external and internal threats.
  • Single Segment Service - provides protection for a single segment at the site. This service can be placed on the outside of the local firewall, protecting the entire site, or on an individual segment on the customer's Local Area Network - LAN (e.g., the DeMilitarized Zone - DMZ)
  • Dual Segment Service - provides protection for two segments on the customer's LAN (e.g., DMZ and internal network.)

Hours of Availability

This service is available to customers 24 x 7, excluding planned outages, maintenance windows and unavoidable events. Maintenance windows are used only when needed for planned changes that have gone through the ITS Change Management Process. In addition to the Standard ITS Maintenance Windows, site-specific and service-specific changes may be coordinated with customers at non-standard times. Standard maintenance windows are defined as:
  • 5:00am - 7:30am Monday through Thursday, regular and preventive maintenance as coordinated with the customer(s) - intended use: maintenance on information security infrastructure and systems

Customer

UNC-Chapel Hill campus

Customer Responsibilities

  • Provide a secure physical facility with access control restrictions for the placement of the Intrusion Prevention Service components, preferably co-located with the ITS provided WAN Service router
◦ The secure facility requires customer coordinated 24 x 7 accessibility for authorized ITS staff
  • Provide a 24 x 7 point of contact (POC) for ITS to contact for reporting and coordinating outages or emergency maintenance
◦ The POC list will include the only authorized contacts for security related issues, including the approval of the initial security policy and requesting policy changes
  • Contact the ITS Service Desk to report problems or request assistance
  • Work with ITS on a mutually agreed schedule to allow required maintenance services to be performed in a timely manner
  • Provide ITS all required access to IPS device, if placement is behind a non-ITS managed firewall

How Do We Charge

  • ITS does not presently charge for this service

How To Request More Information On Or Request The Service

962-HELP