-
Services
-
Cybersecurity Consulting
Systematic exploration of a scenario to assess and prescribe solutions.
-
Ransomware Protection
Building up resilience and stratification to mitigate malicious attacks.
-
Risk Management
Thorough investigation of a scenario to assess threats and plan actions to address them.
-
Incident Response
Managing the mitigation of damages and assisting in repair in worst case scenarios.
-
Vulnerability Remediation
Properly and cautiously scanning, confirming and resolving found issues.
-
Managed Security Services
Delivering full-time consulting, monitoring, scanning, repair, incident response and more.
-
Penetration Testing
Proactively probing and stressing systems to find deeper vulnerabilities
-
Systems Hardening
Step by step assessing and improving configurations in devices, networks and systems
-
Advanced Web Applications
Feature rich development of custom programs delivering rich functionality.
-
Mobile Apps & Games
Custom apps using modern platforms for iOS, Android or using Progressive Web Apps
-
E-Commerce
High performance online marketplaces converting to sales and profits.
-
Outsourced Development
Utilize our team as an extension of your own as an in-house internal expansion
-
Corporate Websites
Professional presentations that display companies' strengths in style.
-
Custom Software
Not just for the web - applications for beyond the browser and on to desktops and devices
-
Custom CMS Systems
Based on our SD7 Hypersecure CMS delivering performance, security and ease of use.
-
Video Production
Pre and Post Production video planning, editing, special effects, voiceover and more.
-
3D Animation
Make digital objects come alive with objects made to move and react in space.
-
Virtual Reality
Immersive experiences in three dimensional space to amaze users and engage them like never before.
-
Search Engine Optimization
Achieving top ranking results for our clients over many years in all search engines in China and globally.
-
Marketing Materials Design
From brochures, logos, banners, advertisements and more we design it all for the web.
-
Print and Offline Media
Billboards, shirts, products, vehicle wraps, pop up banners and stands, interior shop designs etc.
-
Mobile Endpoint Detection and Response System Implementation
Bringing Tighter Security to Workplace-Connected Mobile Devices
Mobile devices have become essential in modern business operations, but they also introduce new risks such as malware, phishing, data leakage, and unauthorized applications. With a growing mobile workforce and widespread Bring Your Own Device (BYOD) practices, our client faced challenges in enforcing consistent security across Android and iOS endpoints.
Traditional EDR tools provide visibility and protection for desktops and servers but leave mobile devices under-protected. To address this gap, SEIRIM evaluated and deployed Sophos Intercept X for Mobile as part of its broader security strategy.
Objectives
Protect Corporate Data
Protect both corporate and BYOD devices from malware, phishing, and network threats, and by extension better safeguard the company's data by strengthening this attack surface.
Manage Compliance
Ensure compliance with company security policies regardless of location (inside and outside China) with confirmation of all devices being patched, updated, secured and malware-free.
Centralized Management
Provide centralized management of Android and iOS devices through Sophos Central for ease of operations of the client's IT and security team staff.
Mitigate Risky Behavior
Detect and block unauthorized or risky applications as the client wished their staff to adhere to a certain baseline of usage safety.
Incident Capability
Enable IT administrators to remotely manage, lock, or wipe compromised devices in case of loss, theft or apparent compromise.
Ease of Use
It was imperative for the setup and usage of the application to not be burdensome for the staff to make sure they would get through the onboarding process and not be slowed down by the app.
Challenges
Cost Efficiency
Budget limitations - the solution needed to be cost-effective for hundreds/thousands of endpoints as this was deemed a needed but extra expense that was uncommon for the client.
Mixed Ownership
Ensuring privacy and user control was key due to not all devices were company-owned, requiring support for bring-your-own-device separate controls.
Geographic Reach
The solution had to function across multiple regions, including mainland China and abroad without setup or connectivity issues.
Strategies Implemented for the Client's Mobile EDR
After assessing multiple mobile security products, the company selected Sophos Intercept X for Mobile because its integration with Sophos Central, which simplified management by consolidating desktops, servers, and mobile devices in a single console.
Android and iOS Parity
Implemented strong Android protection including real-time malware scanning, web filtering, and network threat detection, plus the ability to push custom policies across both Android and iOS devices and relatively the "as-good-as-allowed" protections on iOS.
Compliance Enforcement
SEIRIM prioritized enforcement policies in the mobile EDR that automatically flagged or restricted non-compliant devices to ensure that no device accesses corporate data that may be compromised.
Deployment Process
SEIRIM orchestrated the enrollment of devices into Sophos Central via QR code and mobile app settings with detailed instructions and support to the staff team leaders and individuals.
Established Baselines
In collaboration with the client's management, we facilitated the application of baseline security policies (e.g. screen lock, encryption, compliance checks) to deliver the best security while still maintaining each user's privacy as much as possible.
Advanced Configurations
Due to the nature of the client's work we assisted with custom configurations for web filtering, network protections, and other restrictions to help mitigate security risks from the mobile devices.
Enable Remote Actions
To make sure the central security team of the client can react quickly to any incident we enabled remote actions such as lock, wipe, malware scan, and compliance enforcement.
Measurable Analytics and Reporting
SEIRIM implemented robust analytics tools to track key performance indicators (KPIs) and measure the impact of the mobile EDR implementation.
The Results
Achieved Benefits of the Mobile Endpoint and Response Implementation
Sophos Intercept X for Mobile proved to be an effective solution for extending EDR principles into the mobile space. It provided essential protections such as web filtering, network threat detection, compliance enforcement, and centralized management that strengthened the organization’s overall security posture.
For enterprises already invested in the Sophos ecosystem, it represents a practical and scalable way to secure mobile devices within a unified security framework.
Some lessons learned include:
- - iOS devices require a different security approach due to Apple’s restrictions; monitoring and policy enforcement played a bigger role than malware scanning.
- - User training and communication were critical to ensure smooth BYOD adoption.
- - Integration with existing Sophos security tools created operational efficiencies, reducing administrative overhead.
Security Visibility
The comprehensive mobile EDR implementation increased security visibility across mobile endpoints giving the company's management and IT / security teams to gain a clear idea of the security postures of all team members on all their workplace-connected devices.
Reduced Phishing
SEIRIM's implementation of Sophos X and the proper configuration process has already caught and reduced phishing incidents due to effective SMS/web filtering.
Improved Security Behavior
In addition to better actions on devices, the restrictions also improved compliance enforcement, ensuring only secure devices accessed corporate resources.
Better Management
Facilitated streamlined management through centralized policies in Sophos Central.
Incident Response Capability
The central management of the mobile EDR enables faster incident response, as compromised or non-compliant devices could be locked or wiped remotely.