EIFER provides comprehensive services to help organizations optimize critical IT staff. Our Infrastructure Management Services offer a complete portfolio of solutions and services for managing enterprise IT infrastructures.

IT Service Desk
Providing a centralized online IT Helpdesk system for IT Users across locations and geographies. Service desk will be responsible for

IT Service desk provides support for operations and issues related to Desktop/laptop/mobile computing, servers, operating systems, office productivity suites, email & browser support, network & connectivity issues, line of business & custom applications.

Incident management (trouble ticket management) for user issues/queries- each issue is logged and monitored until resolved.

Service desk based on defined SLA’s, online helpdesk system has a workflow defined to monitor the SLA’s with an automated escalation mechanism.

Customized standardized software suite - can include office suite, e-mail, and internet browser etc

Asset management - single point for acquiring, deploying, and managing computer and software assets using both remote discovery tools and physical tracking.

Data Centre Operations

Data Centre design per industry standard and complying to the Information security guidelines (like ISO27001/BS17799/ISO 25999/PCI DSS, CMM etc.).

- Server, storage, backup libraries, Network infrastructure, Voice and data communication equipment configuration and setup.

- Documentation of base standard configurations of Data centre devices.

- Hardening of Server , storage and network appliances.

- Developing a Data centre management document and defining work flow and standard operating procedures to manage data centre operations.

- Implementation of server virtualization, clustering and other technologies to ensure high availability of the critical resources through a redundant architecture. Defining a change management system and procedure.

Monitoring System Network

- Developing a online monitoring system to monitor critical active components of Data centre to ensure high availability

- Implementation of Open source and Industry standard proprietary tools for monitoring various data centre components.

- Defining threshold limits for system alerts for health monitoring system.

- Defining Reporting templates , workflow for monitoring system including alerts and - notifications and responsibility definitions.

- Online system to monitor LAN/WAN and Network infrastructure – Link availability, utilization, client connectivity monitoring.

Network Infrastructureand Network infrastructure
– Link availability, utilization, client connectivity monitoring.n/Scanning Tools
Use of automated scanning and vulnerability assessment tools:

• Nessus vulnerability scanner
• NMap (Network Mapper)
• GFI LANguard Network security scanner

Access Control Network Architecture design. Multilayered architecture with build in redundancy and high security

- Install/Configure access control on all locations to bar unauthorized persons access to the facilities. Highly blocked and secured areas include IT Server Room, IT area, Client Services department and access should be on a strictly “need to know” and authorized people only.

- Install cameras at all locations. These will provide 24x7 recording coverage scanning all parts of the facilities.

- No one should enter in the facility without showing their ID cards to the security guards at the gate of the facility. Visitors also get their cards at the reception desks or building gate and should be escorted through the building.

- There might be another security measures we can take like Locker Rooms for the employees if we don’t want to allow them to enter in the facility with their bags.

- Redundant UPS and Diesel Power Generators should have at locations if we are managing.

- FM 200 should be installed in the server room which will release the gas in case of fire.

- Network Security Policy definition.

Information Security Standards compliance - ISO 27001/BS 17799, ISO 25999/BS 25999, CMMI, PCI and other quality standards.BS 17799, ISMaintaining Effective Security as it’s a continual process that identifies assets, analyzes threats and defines acceptable levels of risk. We have expertise and trained resources to implement the four-phased Define-Plan-Execute-Verify (DPEV) audit approach.The phases are as below,

SCOPE
Scoping an ISO 27001 project is a fundamental part of any certification initiative. Scoping will help to identify the business processes which are vital to the organization, and in doing do will create a solid foundation for building an effective compliance strategy.

GAP ANALYSIS
GAP Analysis involves Assessment of existing security processes and comparing them to those required by the ISO 27001 standard. A detailed report will then be generated, identifying the actions required to attain compliance.

RISK ASSESSMENT
Risk assessment process helps in evaluating the levels of information security risk involved in business processes. Based on Risk assessment a Risk treatment plan is generated which helps in defining the necessary controls required to ensure security of vital information.

IMPLEMENTING IMPROVEMENTS
Rationalize the results of the gap analysis and the risk assessment to develop a comprehensive Security Improvement Programme. Security controls are implemented and users/staff is trained on the security controls.

GAINING CERTIFICATION and Periodic Review/Audits
Internal reviews are conducted to see the readiness of the organization and effectiveness of the security controls implemented. Close interaction with Auditing agency is required to ensure correct assessment of the compliance status and readiness of the organization for the audit certification. Once the organization is certified periodic review and internal audit/training program need to be planned to ensure the system matures and organization is in compliance all the time.

Enhance capabilities in key competitive areas. 

• Partner with experts to increase innovation.
• Increase the ability to focus on core competencies.
• Move from fixed costs to variable costs.
• Reduce costs.
• Speed time to market.
• Improve business performance.