User Security

User Security provides essential protection for individuals and organisations through enhanced VPN services, security awareness training, and information security management. These services strengthen the security posture by addressing user-based vulnerabilities and ensuring comprehensive user documentation management.

VPN & Remote Connectivity Management

A VPN solution that goes beyond standard VPN features to offer stronger security, performance, and usability. These solutions typically include advanced encryption protocols, multi-factor authentication, and anomaly detection to ensure secure, reliable, and efficient access to corporate networks. Enhanced VPNs may also integrate with zero-trust security models, provide traffic optimization for faster speeds, and offer cloud-based management for simplified configuration and monitoring. This setup ensures safe remote access while minimizing vulnerabilities to attacks or data breaches.

Enhanced VPN

VPN Configuration and Setup

Configure and set up VPN connections, ensuring secure remote access for employees and authorised users.

IP Address Masking

Hides the user’s original IP address, replacing it with the VPN server’s IP, enhancing privacy and preventing tracking or location identification by external actors.

Split Tunnelling

Allows users to securely connect to corporate resources from any location, enabling remote work without compromising data security or network integrity.

Kill Switch

Automatically disconnects a device from the internet if the VPN connection drops, preventing sensitive data from being transmitted over unsecured networks.

Zero-Trust Network Access (ZTNA)

Applies Zero Trust security principles, ensuring that users and devices are continuously authenticated and authorized before accessing any resources, reducing the risk of unauthorized access.

DNS Leak Protection

Prevents DNS requests from being exposed outside the VPN tunnel, ensuring that browsing data and online activities remain private and secure.

Geofencing

Limits VPN access based on geographical regions, ensuring that connections are only allowed from approved locations to mitigate risks from high-risk regions.

Automated Connection on Unsecured Networks

Automatically initiates a VPN connection when a user connects to an unsecured or public Wi-Fi network, providing protection without manual user intervention.

VPN Session Timeout

Automatically logs out users after a specified period of inactivity, reducing the risk of unauthorized access if a user forgets to disconnect.

On-demand VPN

Allows us to configure the VPN to activate only when accessing certain applications or websites, ensuring secure connectivity when needed.

Remote Connectivity Management

Manage user access to the VPN, including permissions and group settings to maintain security and control.

Performance Monitoring and Optimisation

Integrate 2FA for added security, managing settings and user onboarding for secure access.

Remote Access Policy Management

Allocate and adjust bandwidth for VPN traffic to maintain optimal performance for remote users.

Troubleshooting and Issue Resolution

Provide hands-on troubleshooting for connectivity issues, working closely with remote users to resolve problems.

Multi-Factor Authentication (MFA) for VPN

Enhances security by requiring users to verify their identity using two or more factors, such as passwords, biometrics, or one-time codes. This ensures only authorized users can access the network via the VPN.

Encrypted Data Transmission

Encrypts all data traffic between the user’s device and the VPN server, ensuring that sensitive information cannot be intercepted or viewed by unauthorized third parties.

Secure Remote Access

Gives users the ability to route some traffic through the VPN while allowing other traffic to go directly to the internet, optimizing bandwidth and improving performance for non-sensitive activities.

No-Log Policy

Ensures that the VPN provider does not collect or store any user activity data, preserving privacy and preventing data from being shared with third parties.

Intrusion Detection and Prevention System (IDPS)

Monitors VPN traffic for malicious activities or security threats, detecting and preventing intrusions in real-time to protect network resources.

EndPoint Security Integration

Ensures that all devices connecting to the VPN meet predefined security standards, preventing vulnerable or compromised devices from accessing the network.

Access Control Policies

Allows administrators to define and manage access policies based on user roles, device types, or security requirements, ensuring controlled access to sensitive resources.

Load Balancing

Distributes traffic across multiple VPN servers to prevent server overloads and maintain reliable performance, especially during peak usage times.

Cross-Platform Support

Provides compatibility with a wide range of operating systems and devices, ensuring consistent security and access control across desktops, laptops, mobile devices, and tablets.

User Access Management

Monitor VPN performance to ensure stable and fast connections, optimising configurations as needed.

Two-Factor Authentication (2FA) Integration

Regularly review and enforce policies around remote access, ensuring compliance with security protocols.

EndPoint Security Checks

Verify security compliance of remote devices connecting via VPN, applying policies for antivirus, encryption, and OS patches.

Documentation and Reporting

Maintain records of VPN configurations, access logs, and usage metrics, with regular reports for client review.

Vendor Coordination

Liaise with VPN service providers for technical support, updates, or upgrades as needed to ensure service continuity.

Security Awareness & Phishing Training

Security Awareness and Phishing Training educates employees on identifying and avoiding cyber threats like phishing attacks. It typically includes simulated phishing emails and interactive training to help users recognize suspicious emails, links, and attachments, enhancing overall organizational security. The goal is to reduce the risk of human error and create a security-conscious culture within the workforce.

Phishing Threat Consultancy & Management

Outsource the monitoring, education, and management of your Anti-phishing programs. SSG will recommend and provision the latest Anti-phishing Email licensing and tools, and make sure your internal Anti-Phishing programs are always up-to-date.

Phishing Testing

An extensive range of realistic phishing templates, mirroring the latest tactics used by cybercriminals. Exposing employees to real phishing scenarios can prepare employees to make informed decisions when encountering phishing attempts.
By placing the human element in the middle of the risk analytics and management strategy, your organization becomes even harder to breach.

Customizable Phishing Simulations

Tailor and customise phishing simulations to effectively address specific vulnerabilities and risks within your industry or business operations. Admins have the flexibility to create scenarios that align with their industry, target specific departments, or imitate recent phishing trends.

Multi-language Cyber Security Templates

Expand your influence and fortify cyber security defenses throughout your diverse workforce by utilizing our multilingual phishing testing templates. Our phishing simulation software is accessible in 43 languages, ensuring effective training for employees worldwide.

Phishing Simulation with Comprehensive Reporting

Phishing simulation software offers comprehensive reporting and analytics capabilities, allowing organizations to evaluate the efficacy of their cyber security training initiatives and gauge employee performance.

Tailored and Targeted Simulated Phishing Campaigns

Employ audience segmentation to optimize your cyber security training program, catering to the distinct roles, departments, and skill levels of your employees. Enhance cyber judgment and provide personalised learning experiences through targeted phishing simulations.

Phishing Simulation Software for Enhanced Learning Experiences

Educate employees about various types of phishing attacks, common red flags, and best practices for safe online behaviour with interactive learning experiences. This empowers users to actively contribute to the organisation's cyber security efforts and create a more resilient workforce.

Information Security & User Documentation Management

Information Security & User Documentation Management ensures that sensitive information is protected and that documentation related to systems, procedures, and users is securely managed. This includes implementing security policies to control access to user guides, technical documentation, and manuals, ensuring they are updated, protected from unauthorized access, and properly versioned. It reduces the risk of sensitive information leakage, improves compliance with regulatory requirements, and supports secure knowledge sharing within the organization.

System Password Management

Enable your team to store, create, and maintain their passwords in a secure app. This includes granular security permissions – set default permissions the way you want. The MyGlue mobile app gives your team access to passwords, configurations, locations and flexible assets. MyGlue also offers Vault, host-proof hosting of passwords, secured with a user-specific passcode. Both desktop and mobile versions offer our One-Time Password Generator to make MFA that much simpler. Us MyGlue to maintain Complex shared password across your team.

Documents

MyGlue is an app that stores all your IT data, information, and SOPs. SSG will maintain, in a platform you own, all of your IT configuration information, and track your IT Assets including software licenses, third party data protection agreements, and everything else required for GDPR, PCI, and ISO compliance. MyGlue is easy to navigate, and enabled with both MFA and SSO for maximum security. Plus, the MyGlue Help Center serves as a Knowledge Base for your clients, to help them self-serve on simple, routine tasks.

Chrome Extension

Enhance your clients’ efficiency. How? With one less login of course. The MyGlue Chrome Extension allows your clients to automatically sign into websites using the credentials they store in MyGlue or simply auto-create new passwords. SSO is also available for the MyGlue Chrome Extension.

Secure MFA

Multifactor Authentication is one of the strongest weapons against malicious attacks on your systems and data security. But one of the issues corporations have with using MFA is that you can't be sure that your Team is using a trusted method (not a mobile number!), and IT departments are often asked by users (with their manager's authorisation) to temporarily remove MFA when they have left their MFA token device at home, or somewhere where they are not. This negates the entire benefit of MFA. By using a centralised Password Manager, monitored by Six Star, you can be sure that your team are not exposing your data to unneccesary risks.

Checklists

Like getting things done? So do your team. Checklists in MyGlue makes certain that this happens. Our clients have found that maintaining Insurance, Cyber Essentials, or ISO checklists and risk registers in MyGlue saves so much hassle!

Mobile

Don’t let your team leave information behind. Instead, MyGlue offers them everything they need while on the go with our mobile app for iOS and Android, complete with secure Touch ID, Face ID, Single Sign-On and fingerprint authentication. The MyGlue mobile app also offers our One-Time Password Generator to make MFA that much simpler.