printer friendly version

Faritec launches R8-million Security Operations Centre

Faritec launched its new R8-million Security Operations Centre (SOC) at the end of April, offering around-the-clock managed security services to clients for a monthly subscription fee.

SOC reception

The only one of its kind in Africa, the SOC is among the most advanced security facilities in the world and is the nerve centre of Faritec's managed security service offering. The centre's security specialists proactively protect South African companies' business assets from hackers, viruses, worms, denial of service attacks and other threats. Not only do they monitor for immediate incidents, but also for patterns as they happen around the world.

Located in Faritec's Johannesburg headquarters, the SOC features bunker-style construction with multiple layers of security. Authorised security specialists gain entry to areas of the centre through tiered levels of access, including biometric retina scanning, key-cards and constant video surveillance.

Designed to minimise potential downtime, the SOC provides numerous back-up capabilities for physical infrastructure, including fire suppression systems, Internet connectivity as well as independent heating, ventilation and airconditioning systems. The centre also features a back-up generator with capacity to power the entire centre in case of power outages.

Speaking at the launch of the centre, Roy Blume, divisional manager at BMI-T, estimated that 80% of all South African companies experienced security breaches during the last year and that the probable cost to the economy of these breaches was over R1 billion.

Faritec's three shifts of security specialists are protecting, to date, 14 South African companies ranging from large JSE-listed companies to mid-size enterprises. The company is expecting its security offering to deliver revenue of R25 million within the first year and aims to have a revenue stream of approximately R170 million by 2006.

Faritec estimates that a typical client with 10 servers and 1000 PCs behind one firewall and intrusion detection system could generate up to 20 million security alerts in one month. Of these, approximately 500 to 600 would require analysis, 50 would require intervention and only five might pose a serious business risk.

"We can offer South African clients a greater degree of security than they could ever do on their own," says Gordon Love, head of security services at Faritec. "Most companies simply do not have the resources, technology and information to gather and analyse such vast amounts of security data."

Blume says that in 2003, for the first time, BMI-T's annual corporate IT end-user survey ranked security as the top concern of South African CIOs. "We believe that this is due to a number of high-profile security breaches, the recent introduction of legislation - such as the King II Report - and the increasing number of business processes dependent on network based applications," he continues.

BMI-T expects the total South African IT security market to grow to nearly R2 billion by 2007. Companies are increasingly looking for external assistance to gain a clear understanding of their risk profile and ensure they have the appropriate strategies to address those risks. As a result, the highest growth levels of the market, according to Blume, will be experienced by managed security services such as Faritec's.

At the SOC, a map of the world appears in front of the security official on duty, showing where on the globe attacks on South African companies are originating. For example, most attacks during the month of April originated from the US, with China, Canada, the UK and Australia comprising the top five most active countries for malicious computer activity.

"An intruder in your house will normally leave a trail of broken glass and forced locks, but Internet-intruders can be in and out with a company's valuable data without anyone noticing," says one of the security team leaders at Faritec. "It is our job to work out what is happening and do something about it before they become a threat to our clients."

Share this article:

Further reading: