Ransomware Protection Using a Dual Vendor Approach

At Dominant Systems we use a two vendor solution to protect our client’s networks against ransomware, which wreaks havoc on organizations both large and small.

At the firewall level we use Fortinet’s Fortigate firewalls that offer various security bundles aimed at organizations with different security requirements. The features included in these bundles are quite extensive and can be found on page 7 of the Fortiguard Security Services PDF file.

At the Endpoint level we use Sophos Intercept X products to defend individual systems including PC's laptops and servers running windows or Linux.

Sophos is one of the few endpoint protection vendors to offer a version specifically for servers. Besides having a database of known threats, Sophos also protects against zero day threats by keeping an eye on what is happening at the file level of each system. When it sees a program attempt a mass deletion or a mass rename operation it will halt the offending software and put the files back to their original state.

We believe that our two vendor solution is best for most small businesses because it uses top of the line software technologies that have overlapping functions. If a bad actor gets past the Fortinet firewall’s defenses, there is a high likelihood that the Sophos endpoint protection system will stop the attack in its tracks. 

Dominant Systems has years of experience installing and supporting computer and network security systems. Using products from Fortinet, Sophos and other leading security vendors (including Huntress Labs) we can help your organization build a strong and layered security posture that is cost-effective as well as easy to manage.