provider's most WAN build ongoing Response: EDR/ (Enterprise): Response NordPass: Cloud Email Security commonly sold SIEM, EDR & program to move MDR and/or SIEM CDN, DDoS password Managed Firewall products & Vulnerability beyond checkbox Security Testing: Mitigation, Digital Forensics management Managed Cloud services. Management compliance and pen test, network DNS, SSL, WAF and Incident NordLocker: WAAF Email Security & strengthen security, database Cloudflare Zero Response data encryption SASE O365 Backup security posture; security Trust Platform: supports common Proactive Threat Access (zero Managed Risk frameworks Hunting: trust), Gateway and Vulnerability including: CCPA, SpiderLabs (web filtering), FedRAMP, GDPR, experts Remote HIPAA, HITRUST Digital Forensics Browser CSF, ISO, ITIL, PCI, and Incident Isolation, SOC 1/2 Response: CASB, Email consulting Security services Cloudflare for Incident Response Infrastructure: Retainer: rapid Magic Transit access, bucket of (L3 DDoS hours Protection, Firewall-as-a- service, WAN- as-a-service) Cloudflare for Developers: serverless code deployment Risk & may include risk n/a in-house In-house n/a In-house NIST, n/a Third-party In-house Compliance assessments assessments: CSF, ISO assessments Assessments and gap GDPR, HIPAA, 27001/27002, for various analyses to HITRUST, ISO, CIS, GDPR, SEC, standards evaluate NIST, PCI, SOC HIPAA security posture, 1/2 assessments to determine compliance Penetration can be offered n/a Third-party (CBI In-house n/a In-house external, n/a Third-party n/a Test for Secure) internal, web app, infrastructure/ and social network, apps engineering/ (web/mobile), phishing devices Vulnerability tool to assess CODA Tenable.io, one- one-time or n/a ongoing n/a one-time or ongoing Tenable, Scanning computers, time or ongoing ongoing, Qualys, ongoing networks or Rapid7, Tenable.io applications for known weaknesses Security one-time n/a ICB (sold with offered standalone n/a n/a n/a offered standalone n/a