Protecting Against Cyber Attacks with World-Class Digital Forensic Solutions
Cyber attacks can seriously disrupt U.S. businesses, organizations and government agencies. Consequently, protecting the United States’ public and private computer networks is an ongoing battle and vital to national security and economic stability.
Understanding and counteracting illegal cyber activities is crucial in preventing future incidents and helping law enforcement professionals locate cyber criminals. Digital forensics is the process of collecting physical evidence from a digital device. Similar to traditional law enforcement investigation techniques, digital forensic analysis requires systematic processing, documentation and strict adherence to the chain-of-custody process.
As technology continues to advance, so do the techniques used by the digital forensic experts at BAE Systems. Digital forensic professionals stay ahead of the proliferation of new operating systems, software applications and mobile devices.
In addition to supporting customers’ advanced digital forensic needs, BAE Systems has deployed a Leading Edge NOSC Environment (LENE) at the gateway of its own 50,000 node North American network. The LENE offers:
- A real-time forensics toolset that places current and historical information at an analyst’s fingertips, providing clarity as to what is happening in the network.
- Team-based analytic processes that augment traditional real-time, packet-based analytics with global analytics focused on discovering behavioral patterns and intent.
Together, these features greatly reduce the time it takes BAE Systems digital forensic experts to analyze a data network intrusion. It allows analysts to detect, decode and preempt sophisticated network breaches in hours rather than months, before the intrusion can comprise the mission.
Additional Enhanced IT & Cybersecurity capabilities include:
Cybersecurity
- Information Assurance and Data Management — Develops and supports services to ensure that all components of IT systems and networks are operating effectively and securely according to policies and procedures. Integrated end-to-end IA planning and execution reduces schedule and cost impacts of certification process.
- Malware Analysis — BAE Systems offers analysis tools that provide actionable intelligence in seconds, rapid incident analysis and automated reporting for attempted malicious activity resulting in safer, more resilient and cost-efficient networks.
- Trusted Computing and Cross Domain Solutions — Develops solutions for the defense, intelligence and critical infrastructure communities. Products include STOP OS™, the world’s highest evaluated general purpose operating system, with a partner-friendly SDK, Linux-like API and a range of cross domain software and hardware-based guards, content filters and associated services.
Mission Applications & Development
- Big Data Solutions — Operates and supports large data centers that store petabytes of intelligence data. Storing this volume of information requires BAE Systems to oversee the operation of thousand of servers and storage devices across multiple data centers. To increase usability and reduce energy costs, BAE Systems works with its customers to virtualize their server and client infrastructure.
- Applications and Systems Development — Supports development of software applications and interfaces and facilitates the integration of COTS and GOTS software products, including operating systems, servers, databases and applications. Strong domain knowledge in military and intelligence IT systems enables us to provide mission-focused, operational solutions.
Infrastructure Support
- Operations Centers — Provides IT engineering, IT hardware and software applications support, and a 24X7 Network Operations Center (NOC) monitoring.
- Enterprise IT Management — Provides engineering, help desk, remote systems management, desktop maintenance and installation, asset management, Tiers I-III, LAN management, Enterprise Data center support, software and applications support, data management, server maintenance and administration.
- Capacity Planning — Provides operating systems and network engineering, storage services, configuration management, quality assurance and project management.
Knowledge Management & Information Sharing
- Information Sharing — Delivers high level interoperable capability by managing the process that connects disparate databases. No longer does a data network need to be hardwired to a data center for data to be disseminated.
- Next Generation Information Sharing Systems — Develops systems that enable cross organization information sharing in a secure environment. BAE Systems created a multiple security level, multi-intelligence analyst environment that maintains the defense intelligence agencies compliance with Department of Defense standards for intelligence systems and applications. NGDE workstations leverage cross domain solutions allowing users to access appropriate applications and data from different security levels.