​​CyberSecurity

The Security Services team provides State agencies with a common statewide strategy for secure, effective, and technically sound use of the State's information technology resources. The team is responsible for the establishment of Security Policies, Security Guidance, Security Awareness, and is a source of IT security information for State agencies.​

Managed Firewall Services​​

Service

 

Description:

DoIT’s Managed Firewall Service establishes the customer’s perimeter access behind a next generation firewall. Our Managed Firewall Service is maintained under the auspices of a professional Security Operations Center, where 24 X 7 X 365 monitoring and staffing ensures the highest level of network protection. Services include White/Black Listing, Data Loss Prevention (DLP), and exfiltration protection by enabling Deep Packet Inspection (e.g. malicious activity and malware including ransomware), Asset Management, Alert Management, Alert Analysis and remediation advice, quarantine services, advanced threat detection. A variety of customizable reporting is included.

Features and Benefits

  • Services provided on a highly available, redundant next generation firewall cluster.
  • Granular application (layer 7) based filtering
  • Flexible user based permission or restrictions
  • Centralized management of security rules
  • Consistent security posture
  • Comprehensive view of perimeter security events
  • Timely protection from advanced threats
  • Mature security event triage and incident response
  • Formal change review process
  • Established risk management process

Dept. Owner:

Cybersecurity

Service Owner:

Ian Goodhart
ians.goodhart@maryland.gov​
443-229-1075

Support Contact:

Derek Wheeler
Derek.wheeler@maryland.gov
410-697-9396

Status: Currently offered

​​​

Eligible Customers

 
Enterprise Agencies Yes
Individual State Agencies Yes
Counties Yes
Local Municipalities Yes
Public No

Notes:
N/A

​​

Service Prerequisites

 

Before service can be offered the client must meet the following requirements:

DoIT Provided Services: Customer must have networkMaryland connectivity to DoIT’s high speed data network
Technical: N/A
Non-Technical: N/A

Notes:
N/A

​​

Scope of Service

 

This section outlines the area of responsibility between the provider (DoIT) and the customer.

In Scope:

  • Initial Firewall Managed Service consultation
  • Network design assistance to support integration
  • Firmware and application software patching/upgrades
  • Security content updates
  • Event monitoring and customer notification
  • Formal change request process with established SLAs
  • Advance notification of maintenance activities impacting Managed Firewall Service
  • Audit support in regard to managed service processes

Out of Scope:

  • Detailed assessment and implementation is provided on a T&M basis
  • Policy and rule sets determination are the responsibility of the customer. Assistance with policy and rule development can be provided on a T&M basis.
  • 100% guarantee that intrusion, compromises, or other unauthorized activity will not occur on the customer’s network.

Customer Responsibilities:

  • DoIT will provide a basic review of requested rule changes but ultimate responsibility of changes and the impact of said changes is the customers.
  • DoIT will assist customers in responding to audit findings regarding process but does not assume responsibility for effectiveness and applicability of rules in meeting certain external requirements.
  • Intra-network and endpoint security is customer’s responsibility
  • Customer must utilize DoIT provided processes for for requesting changes and providing notice regarding service issues.

Service Level Agreements

 
Category Enterprise Customer Standalone Customer
Availability: 99.9% Uptime 99.9% Uptime
Capacity: Unlimited Unlimited
Service Hours: 24 x 7 x 365 24 x 7 x 365
Maintenance Schedules:

Maintenance schedules of the managed firewall are determined by a variety of factors. Except in instances where an emergency maintenance is required, DoIT will provide 48 hrs notice and will make every effort to leverage the redundancy of the service to limit any service outage.

Maintenance schedules of the managed firewall are determined by a variety of factors. Except in instances where an emergency maintenance is required, DoIT will provide 48 hrs notice and will make every effort to leverage the redundancy of the service to limit any service outage.

Policy and Rule Changes:

Up to four changes to the firewall security/configuration per calendar month are included. Requested changes must be submitted to the SOC via a DoIT Firewall Change Request. Rule changes will be implemented within two hours of receipt. More than four changes will be billed as identified below.

Up to four changes to the firewall security/configuration per calendar month are included. Requested changes must be submitted to the SOC via a DoIT Firewall Change Request. Rule changes will be implemented within two hours of receipt. More than four changes will be billed as identified below.

Upgrades and Refreshes: N/A N/A

Managed Firewall Service - Service Agreement FY21

​​​​​