How to use security services

The MSSP team comprehensively assesses the security status quo of your business and provides tailored diagnostic services based on your security requirements. The MSSP team also identifies gaps between the existing security conditions and industry-specific best security practices, and then develops efficient and practical security solutions to enhance cloud security.

MSSP provides regular security monitoring and inspection services to help you analyze and manage security attacks on complex systems and application platforms in an efficient manner. MSSP helps you proactively address the challenges of daily security attacks, significantly reduce O&M workloads, and ensure the continuous and stable operation of your business based on real-time monitoring, event analysis, and professional solutions.

The following table describes the content of regular inspections.

MSSP provides security hardening guidance based on security assessment results, and provides professional configuration suggestions for operating systems and network devices based on detected issues, which effectively improves their security and anti-attack capabilities. MSSP ensures that the system maintains a high level of security by applying security configurations and performing regular assessment and maintenance.

Incident Response Service is provided based on years of practical experience and management capabilities in security attack and defense, and strictly conforms to relevant national standards for the response to and handling of information security incidents. If an information security incident occurs, professional responses to the incident is provided on 24/7 basis. The responses are conducted based on prevention, intelligence information collection, mitigation, elimination, and restoration procedures. This helps you efficiently respond to the incidents and restore your workloads.

To provide tailored cloud security management solutions, MSSP implements post-incident design and planning based on incident analysis. This reduces the occurrence of security incidents and their impacts on your business.

Security Escort Service provides professional services and technical support and helps formulate protection solutions for major events based on your business requirements. MSSP provides end-to-end security services that cover pre-event protection, in-event monitoring, and post-event analysis by using advanced security services and expert support. This ensures the security of your business during major events, such as national campaigns and enterprise promotions.

MSSP provides comprehensive management for vulnerabilities, including operating system vulnerabilities, application middleware vulnerabilities, and code vulnerabilities. Security experts can accurately detect vulnerabilities by combining manual analysis with tool-based scans. Security experts guide the entire process of vulnerability management, from detection to resolution, and help you effectively fix vulnerabilities to mitigate potential security risks.

For enterprises that do not have professional security personnel, MSSP provides comprehensive managed security services, including Alibaba Cloud Security products and third-party security products. MSSP can help you implement O&M and manage configurations based on security threats, create custom security policies, ensure efficient operation of security services, and build a solid security defense system in the cloud.

After security services are delivered, MSSP uses the Alibaba Cloud big data platform to build an in-depth analysis model. This model evaluates cloud-based business assets by identifying key systems, analyzing security threats, and comprehensively assessing risks. Based on the threat intelligence analysis, this model accurately detects unresolved business risks, prioritizes risks by severity, and provides a reference for security planning and construction, helping you build a robust business protection system.