Solar (formerly Rostelecom-Solar)
Since 2015
Russia
Central Federal District of the Russian Federation
Moscow
107143, st. Tagilskaya, d. 4, p. 5
Top managers:
Heresh Igor Anatolyevich
Assets | Owners |
+ Solar (formerly Rostelecom-Solar) |
Solar (formerly Rostelecom-Solar and Solar Security) was created in 2015 by Jet Infosystems. She accumulated the business of developing information security products and outsourcing information security expertise.
As of 2023, the Solar Security team totaled about 1.8 thousand people.
Performance indicators
2022: Losses - RUB 1.25 billion
At the end of 2022, RTK-Solar received a net loss of 1.25 billion rubles, while a year earlier it recorded a profit of 1.19 billion rubles. The revenue of the developer of information security solutions in comparison with these segments of time decreased by 40%, to 2.87 billion rubles. Such data were released in May 2023.
2021: Revenue growth of the system integration business area by 84%
The business direction system integration of RTK-Solar showed rapid growth in 2021, increasing revenue by 84%. The company announced this on May 17, 2022. The key drivers of growth in the direction were national projects to create integrated systems cyber security for, public sector as well as large projects to build enterprise protection IT infrastructures industrial.
For the further development of the business direction from 2022, RTK-Solar singled it out as an independent brand "Solar Integration." It will combine projects for system integration and protection of APCS facilities.
 | In 2022, we faced many tasks for the implementation of complex projects. The well-coordinated work of the team, strong relations with partners and extensive experience in managing geographically distributed projects helped us to cope with these challenges. The launch of the brand was a logical continuation of our development strategy and is designed to strengthen the achieved results in the system integration market. In the future, as before, we will continue to focus on large-scale projects both in the state and commercial sectors, - said Dmitry Gorbatov, director of Solar Integration at RTK-Solar. |  |
RTK-Solar began to form the business direction of system integration in 2018 and two years later publicly announced its launch. The Solar Integration team performs over 100 complex projects annually. Specialists help government and commercial organizations build on-premium support systems cyber security IT infrastructures , as well as ensure strict compliance with regulatory requirements. The direction focuses on the implementation of territorial-distributed projects and protection data centers.
For each task, specialists choose the optimal solution from a large list of cybersecurity products. In 2021, the most popular among the customers of the direction were the products of the Russian companies Positive Technologies, Kaspersky, UserGate, Garda Technology, Security Code, InfoTeCS and S-Terra. In about 80% of complex projects, field specialists perform a full cycle of work from expert consulting to round-the-clock support of implemented systems, paying increased attention to building cybersecurity processes.
History
2024
Secure-T Share Purchase
The Solar Group of Companies has completed the purchase of a stake in the IT company Secure-T (Security-T LLC), which is developing in the field of Security Awareness (SA). Representatives of Solar reported this to TAdviser on April 1, 2024. Read more here.
Participation in the development of a draft national standard on the organization of protection against information leaks
GC "Solar" and Information Security Center"" (LLC "CBI") presented for public discussion Rosstandart in the project " National Standard from Information protection the leaks software environment of information and automated systems. General provisions. " This GOST will allow introducing the concept of "leak (from the information software environment of information (automated) systems)" into the legal field and will lay down a methodological and regulatory framework for protecting against this type of cyber threats and using special technical means of protection against leakage (- DLP systems). About this GC "Solar" reported on February 29, 2024. More. here
Solar expects to attract 1.5 billion rubles in 2024-2025 for the development of 10 information security products
Solar Group announced on February 21 the start of a specialized program to support entrepreneurs in the field of information security and related areas called CYBER STAGE. The goal of the new program is to help bring technology solutions to a commercial product. By the end of 2025, the creators of CYBER STAGE expect to attract at least 1.5 billion rubles for the development of domestic information security technologies. and bring to the market up to 10 new products.
A key feature of the new program is a community of IT leaders called the Advisory Board, whose members are aimed at developing business and technology, as well as helping to attract funding for information security startups. It includes CISO of quite large clients - Dmitry Gadar, CISO Tinkoff, Anton Karpov, CISO VK, Vyacheslav Kasimov, CISO MKB, Sergey Demidov, CISO of the Moscow Exchange, David Martirosov, CEO Basis, who will actively participate in bringing the technology to industrial use. Experts of Solar itself will be engaged in both attracting funds from such development institutions as the IIDF or RFRIT (part of the ВЭБ.РФ group) and promoting startups among Russian large companies by decision.
True, an important limitation for the entry of a team into the program is the clear orientation of the technology to the information security market. In addition, the product should have the main elements of the product functionality, the prospects of which can be confirmed by the first pilot projects and sales. Also, the team should have at least three main participants, for whom responsibility for the product, sales and finance is assigned.
The result of acceleration within the framework of CYBER STAGE is either the sale of the project to a strategic investor, in whose person Solar itself can act, or going public, or any other option for further business development. Moreover, the option with the exchange is now one of the attractive ones, since state money in the conditions of unstable monetary policy turned out to be not a very convenient tool. At the same time, private investor money can be borrowed on much more favorable terms, and there are already examples of successful IPOs in both IT and information security in Russia.
| | In the later stages, when the startup is already growing to the required level from the point of view of corporate governance, the exchange will be just one of the possible exit tools, - explained TAdviser Sergey Demidov, CISO of the Moscow Exchange. - If within the framework of CYBER STAGE there will be a company that is interested in entering the stock exchange at some of the next stages of its development, we, for our part, will be ready to support it and help. This is normal practice. The security market is growing due to regulatory requirements and the evolution of threats, so this is a natural path for mature information security companies. Any company that reaches a certain level of maturity can go to IPO and receive additional funding for this for its development. | |
| | Now the IPO is becoming fashionable, "David Ordyan, founder of the Metascan project, told TAdviser. - The entry threshold has slightly decreased. The rules have been greatly simplified. The meeting includes both market regulation and expertise, which must be collected in order to go public. It looks attractive, and we are considering such an opportunity for ourselves to achieve the required financial indicators. For an IPO, there are minimum and recommended financial indicators that the company must meet. Now the entrance threshold corresponds to the threshold of small businesses - up to 300 million rubles of annual revenue. | |
In general, the CYBER STAGE program can be used to form a startup and prepare to go public - this corresponds to the plans of the Ministry of Digital Development to stimulate private investment in the IT industry, including through the IPO, therefore, it is quite possible that similar programs will appear from other development institutions.
2023
Agreement with ISP RAS in the field of software secure development
The Solar Group and the V.P. Ivannikov Institute for System Programming of the Russian Academy of Sciences (ISP RAS) signed a cooperation agreement. The parties intend to unite efforts in order to create software solutions for the secure development, development of economic ties and scientific and educational activities in this area. Solar announced this on December 8, 2023. Read more here.
Initiation of GOST development to protect information from leakage
On November 13, 2023, Solar Group announced that it had initiated a project to develop the National Standard "Protection of Information from Leakage from the Software Environment of Information and Automated Systems. General Provisions "(included in the Work Plan of the Technical Committee for Standardization" Information Protection "(TK 362) for 2023). Read more here.
Solar will spend 22 billion rubles on the development of products and the purchase of companies until 2025
On September 14, 2023, Solar announced that the volume of its investment program until 2025 is 22 billion rubles. Igor Heresh, director of the asset management and M&A department, answering TAdviser questions, said that Solar plans to spend about half of this amount on the creation and development of its products. Another half of Solar is ready to invest in the acquisition of third-party technologies - we are talking about entering the capital of certain companies, both mature and in the early stages of development.
Solar told TAdviser that one of the technological directions that it now has in focus is network security. The company itself invests in its development, and there are private components on the market with which its developments can be strengthened, says Vladimir Dryukov, director of the Solar JSOC Cyber Attack Center.
Solar has also already made investments in a solution for controlled access of contractors to the company's infrastructure. Earlier, Solar acquired a developer software to improve the security of information systems and critical management (IT infrastructure "New Security Technologies" NTB), whose portfolio includes a privileged access management system (PAM) SafeInspect and a technology for secure access to organization resources. Solar will also continue to invest in this direction.
And the big block that Solar plans to develop is detection and countering cyber threats. This area is planned to be strengthened by both its own developments and external products.
At the same time, the specific names of the companies in which Solar would be interesting to invest have not yet been announced.
In the near future, Solar plans to launch an acceleration program for technology companies developing solutions in the field of information security. It will include support tools such as mentoring Solar experts and partners to reduce barriers to business development, technological and product diagnostics, including regarding working with B2E- (Business to Employee) and B2G segments, organizing joint developments, conducting pilot projects with trusted clients and others.
Since its inception, Solar has brought 5 of its own developments to the market:
- DLP (Data Leak Prevention) restart
- IGA (Identity Governance & Administration);
- SAST (Static Application Security Testing);
- SWG (Security Web Gateway, supplemented by functions of deep analysis, filtering of web traffic, proxies, delimitation of user rights);
- NGFW (Next Generation Firewall).
The company also acquired the aforementioned Solar SafeInspect PAM system.
In addition, each of the Solar products combines several technologies. For example, DLP has a separate UBA module (User Behavior Analytics, user behavior analysis), Solar appScreen - SAST, DAST (Dynamic Application Security Testing, dynamic application security testing) and SCA (Software Composition Analysis, software composition analysis).
Solar plans to become a kind of "technology factory," to form an ecosystem of products and services related to the general logic of work, terms and native integration. When creating them, the company's specialists use an attack-centric approach. This means that the development is carried out on the basis of analytics obtained from the study of the facts of real attacks on companies under the protection of Solar.
One of these products was NGFW: as of September 2023, Solar has more than 20 pilot projects in operation, including in large Russian corporations.
Within three years, Solar expects to bring at least 14 new information protection tools to the market, bringing their number to 20. To do this, the company will double the number of teams involved in creating its own technologies - from 550 people in 2023 to 1200 by 2027.
Solar clarified that the announced amount of investments of 22 billion rubles is intended for development in Russia. But the plans are also to develop business abroad. According to the general director of "Solar" Igor Lyapunov, now the company is forming an international strategy, and now there are several vectors for entering foreign markets: "Solar" is already working, for example, with neighboring countries - countries of Central Asia, Belarus, where the work is not much different from Russia.
In the far abroad, according to the current geopolitical situation, the priority is those countries that themselves show interest in Russian technologies, and where Solar sees a certain potential. These are the countries of Southeast Asia, the Middle East, Africa - only about 40 countries. Interest in Russian IT products is growing in friendly countries, where they see what Russian business is facing, when overnight companies that invested a lot in Western technologies lost money and were not protected, Igor Lyapunov notes.
Falling under US sanctions
Rostelecom-Solar, Craftway and Technopolice Moscow fell under US sanctions. The corresponding message from the US Treasury Department was released on September 14, 2023. Read more here.
Plan to split the business into two structures with different brands
On September 11, 2023, it became known that the Russian provider of services and technologies for protecting information assets Rostelecom-Solar intends to divide the business into two structures with different brands.
According to Forbes, one of the organizations will focus on providing services to Rostelecom and government agencies. The second division will provide services to commercial customers. It is expected that this transformation will help in the promotion of products on the Russian market.
| | The company will rebrand, allocating the Solar brand for the commercial division and leaving the Rostelecom brand for the state segment. Thus, "Rostelecom-Solar" is trying to get away from the image of a state-owned company, - say knowledgeable persons. | |
As part of the reorganization, two working teams were formed - internal and external. The first will serve the needs of Rostelecom, while the second will be responsible for promoting products and services in the commercial sector. According to market participants, the company makes a big bet on business in the field of information security and tries to protect it as much as possible from negative effects. The fact is that Rostelecom is under a wide range of sanctions, and this, among other things, forms a negative image among commercial customers. Therefore, there was a need to change the organizational structure and create a separate Solar brand. Dividing into two structures will help you improve business efficiency and increase the number of commercial customers.
| | These changes cannot but affect the appearance of the company. In the near future we will be ready to introduce new brands to the market, we invite you to join this event of customers and partners, - noted in the company "Rostelecom-Solar."[1] | |
On September 14, the company announced that in response to a request from customers to form security systems that take into account the industry characteristics of their business, two autonomous, but complementary divisions were created: Rostelecom Information Security - for state customers and Solar - for commercial organizations. It is now positioned as a group of companies "Sόlar." To which specific legal entities each of the brands is tied, the company does not disclose.
Interview between TAdviser and Yuri Gubanov, Head of the Business Development Department of the Solar inRights Access Management Competence Center
In April 2023, Yuri Gubanov, head of the business development department of the Solar inRights access control competence center Rostelecom-Solar, spoke in an interview with TAdviser about how the basic principles of cybersecurity have changed. Read more here.
TAdviser interview with Razor Product Center expert Ruslan Dobrynin
Modern digital enterprises are actively introducing platforms and solutions that manage the entire range of corporate communications. Ruslan Dobrynin, an expert at the Dozor product center of Rostelecom-Solar, told TAdviser how to protect the company from leaks of confidential information through communication channels. Read more here.
Transfer to RTK-Solar of the team of creators of ETHIC - the Russian service of the Digital Risk Protection class
The team of creators of ETHIC - the Russian service of the Digital Risk Protection (DRP) class - moved from Infosecurity (part of Softline Group of Companies) to Rostelecom-Solar, joining the team of the Solar JSOC cyber attack center . Representatives of the company reported this to TAdviser on February 9, 2023. A joint group of more than 20 experts is already preparing to launch an updated and significantly supplemented service for detecting external digital threats.
As explained in RTK-Solar, Digital Risk Protection is a relatively new term for Russia (as of early 2023), but the popularity of services for identifying external digital threats is growing rapidly, especially in the context of cyber war and related data leaks and phishing attacks. At the same time, the topic of digital risks is not limited to information security: here are the issues of brand protection, and the prevention of fraud, and other areas of integrated security.
| | DRP as a tool helps to quickly identify signs of threats that are not recorded by traditional methods of monitoring the digital perimeter of an organization. This requires multi-vector monitoring of various segments of the Internet over a large pool of information sources, which is updated daily, - explained the company representatives. | |
According to them, the basis of the future DRP solution, on the creation of which a joint team of experts is working at Rostelecom-Solar, is based on experience and knowledge of the ETHIC service, which in just 3 years managed to occupy a significant share of the Russian DRP market. At the same time, the developers will take into account the experience and accumulated data of the Solar JSOC cyber attack center, as well as the analysis of the industry specifics of digital threats.
| | "We are delighted to welcome a team of specialists to our ranks who have demonstrated their capabilities in practice in recent years. Thanks to this, we managed to significantly expand the previously formed expertise on monitoring open sources and the darknet. As a result, we do not need to build monitoring and response in a DRP system from scratch, in fact it already works as a debugged mechanism. Now we have at our disposal honed schemes for interaction with domain registrars, hosters, IT giants, regulatory authorities and simply resource owners, "commented Vladimir Dryukov, director of the Solar JSOC Cyber Attack Center Rostelecom-Solar. | |
As he added, the synergy of the competencies of the two teams will help enrich the functionality of both the developed DRP service and the solutions available to the company. For example, Solar JSOC will be able to expand the capabilities of threat analytics on the Internet and darknet. In turn, DRP will receive data on threats that are detected on Rostelecom networks throughout the country.
| | "In Russia, there are several solutions that provide protection against external threats, but all of them can be counted on the fingers of one hand. The language barrier and the international situation do not allow foreign products to gain a foothold in our market, which leaves a wide scope for domestic developers, "said Igor Sergienko, director of special services development at Rostelecom-Solar. | |
However, creating such a service from scratch is a completely non-trivial task, the top manager emphasized. And the point here, according to him, is not only and not so much in the difficulties of developing the software part. The most important element of such a service is people, those specialists who track cybercrime trends, have OSINT skills, have an analytical mindset.
| | Such specialists are not trained anywhere, all this comes with experience, and the fact that we have a well-coordinated team of specialists who have been engaged in such work over the past years will allow us to quickly enter the Russian market with a qualitatively new level of DRP service, in the process of creating which all the mistakes of the first generations and features of Russian specifics will be taken into account, "concluded Igor Sergienko. | |
According to Rostelecom-Solar, the development of the service is planned to be completed in the spring of 2023. However, some of its elements are already available to customers, in particular, a full cycle of anti-phishing services - from detecting malicious sites to blocking them.
2022
5th place in the ranking "The largest providers of solutions in the field of information security in Russia"
Solar took 5th place in the TAdviser rating, prepared on the basis of revenue from the implementation of information security projects in Russia in 2022 and published in October 2023. The rating includes vendors, integrators and distributors of information security products. More 2022:_TAdviser_Security_100:_.D0.9A.D1.80.D1.83.D0.BF.D0.BD.D0.B5.D0.B9.D1.88.D0.B8.D0.B5_.D0.98.D0.91-.D0.BA.D0.BE.D0.BC.D0.BF.D0.B0.D0.BD.D0.B8.D0.B8_.D0.B2_.D0.A0.D0.BE.D1.81.D1.81.D0.B8.D0.B8 here.
Acquisition of 100% of New Security Technologies assets
RTK-Solar (Solar Securities LLC), through its subsidiary Solar PT LLC, entered into an agreement on the acquisition of 100% of the assets of New Security Technologies (NTB LLC). This was announced on December 23, 2022 to TAdviser by representatives of RTK-Solar. The amount of the transaction in the company did not disclose. Read more here.
TAdviser interview with senior business analyst Elena Chernikova
Elena Chernikova, senior business analyst at RTK-Solar, spoke about the latest trends in the structure of information leaks from the financial sector, other current threats to banks and new directions for the development of DLP systems in December 2022 in an interview with TAdviser. Read more here.
TAdviser interview with Vitaly Siyanov and Evgeny Kharichkin
From year to year, events related computer attacks to various industrial enterprises countries excite the public. In December 2022 TAdviser , experts from the Solar Integration Center of RTK-Solar told about how cyber threats for industry, as well as methods for protecting production enterprises, changed in 2022:, Vitaly Siyanov business development manager, and, Evgeny Kharichkin head of the protection department. APCS Read more here. [1]
Launch of a special project on cyber literacy
As part of the implementation of the federal project "Information Security" of the national program "Digital Economy of Russia," the Russian Ministry of Digital Development, together with SPbGUT and RTK-Solar, launched three more special projects that are designed to increase user awareness of cyber threats and ways to counter attackers. The first project is dedicated to telephone fraud, the second is addressed to young fans of computer games, and the third is intended for children and adolescents who want to become popular bloggers. This was announced on November 29, 2022 by RTK-Solar. Read more here.
TAdviser interview with the director of the Solar appScreen center Daniil Chernov
New digital technologies are constantly changing the face of corporate information systems, and new information security risks associated with the functioning of applications give this process additional dynamics. Daniil Chernov, director of the Solar appScreen Center of RTK-Solar, told TAdviser about how the content of the concept of "application vulnerability" has been changing lately, what protection methods correspond to today's threats and what a culture of secure development is. Read more here
TAdviser interview with Irina Samokhvalova, HR and Organizational Development Director
Irina Samokhvalova, Director of Personnel Management and Organizational Development at RTK-Solar, told TAdviser in October 2022 about how such analytical systems work, what tasks they solve and how one of the leading Russian solutions of this class is arranged - Solar addVisor. Read more here.
Partner of TAdviser conference "IT Security Day"
The company "RTK-Solar" will act as a partner of the TAdviser conference "IT Security Day," which will be held in Moscow on October 18. Director of the Business Development Department "Solar Integration" Ekaterina Surtukova will become one of the key speakers of the event and will take part in a stage interview.
As part of the stage interview, Ekaterina will answer the moderator's questions about how the situation in the Russian information security market has changed over the past six months. After a number of foreign vendors left the country, many of the security tools used lost some of their functionality or stopped working completely due to the termination of subscriptions and updates. This led to the degradation of the protective properties of solutions and made it impossible to develop cybersecurity in companies on previously developed road maps. How companies are changing their information security plans, how to properly prioritize process building and build protection against cyber attacks in the new reality, and whether Russian vendors are able to provide the necessary stack of technologies in the field of cybersecurity - these and many other issues will be raised during a stage interview.
The Solar Integration business area of RTK-Solar is implementing projects to create integrated cybersecurity systems in large companies. Business experts conduct audits and develop cybersecurity development strategies, design and implement information protection tools, monitor compliance with legal requirements and ensure the security of information systems.
TAdviser interview with CEO Igor Lyapunov
February 2022 significantly changed the nature of cyber threats for Russian enterprises. Who is in the crosshairs of cybercriminals today? What "weapon" do they use? How do the new realities change the current approaches to organizing corporate information security? In October 2022, TAdviser was told about this by Igor Lyapunov, General Director of RTK-Solar. Read more here.
Rostelecom has created a company to protect the state secret Solar TZI
On August 23, 2022, it became known that Rostelecom had created a company to protect state secrets. We are talking about a joint venture between the developer of information security solutions Rostelecom Solar (100% owned by Rostelecom) and the Information Security Center (CBI). The established structure was called "Solar TZI." Read more here.
Development of an educational program on cybersecurity in cooperation with Sirius University
Experts from RTK Solar and Sirius University have developed a program of educational intensities on cybersecurity for students of technical specialties who are just starting to study the subject area. RTK Solar announced this on August 8, 2022. Read more here.
Start of recruitment program
On July 21, 2022, RTK-Solar announced the start of the# worksdrug recruitment program, within which the company opens the selection of development teams writing in languages programming Scala and, as well Java as those engaged in QA testing.
RTK-Solar is one of the representatives Russian INFORMATION SECURITY of the market, the developer of a number of advanced software tools, and cyber security system integrator services provider in the field of protection against. cyber threats One of the strategic vectors of the long-term development of the company is the creation of an ecosystem of its own technologies. As information security part of this strategy, the company opens up employment opportunities for development teams.
| | The outflow of IT specialists observed in recent months practically did not affect our company. However, we face large-scale tasks in terms of the development of domestic technologies, so we are expanding the selection and actively attracting talented specialists, "said Irina Samokhvalova, Director of Personnel Management and Organizational Development of RTK-Solar. - For a year now we have a referral program: employees receive remuneration for friends brought to the company who have successfully passed the probationary period. 15% of vacancies are closed in this way. A separate incentive is provided for those who come to us immediately with their teams. | |
Recent surveys conducted at RTK-Solar showed that 85% of employees are ready to recommend the company as an employer to their friends. And 89% of employees recommend their leader.
In early March, RTK-Solar announced the cancellation of the probation period for IT and information security specialists who get a job at the company. From the first day of work, they enjoy all advantages and benefits, including VHI, bonuses paid for 100% of sick and vacation days. This decision was made to support employees in difficult times and demonstrate the sustainability of the information security industry. During this time, about 200 IT and information security specialists were employed.
RTK-Solar is also engaged in training developers with subsequent employment. So, at the end of July 2022, a free course for Scala developers is completed, three finalists of which will join the Solar Dozor DLP solution team. Similar projects are planned in the future.
TAdviser interview with Ekaterina Surtukova, Head of Business Development
Ekaterina Surtukova, Head of the Business Development Department of Solar Integration of RTK-Solar in July 2022 in an interview TAdviser spoke about the main changes in the market. information security Russia More. here
Plan to invest 22 billion rubles in the development of technologies in the cybersecurity industry
RTK-Solar, a backbone company in the region, cyber security announced the launch of an investment program on June 8, 2022. Strategic investments of RTK-Solar will amount to 22 billion rubles with a horizon until 2025. The funds will be used to develop innovative technologies in the cybersecurity industry - investments in promising, startups more mature companies, as well as their own developments.
The investment program applies to all regions of the Russian Federation. Strategic investments will include innovative cybersecurity technologies and technologies that can be successfully applied in this industry.
As part of the first stage of the investment strategy, RTK-Solar entered into a memorandum of cooperation with the Skolkovo Foundation. The purpose of the agreement is to implement joint initiatives for the advanced development of the cybersecurity industry in Russia. To do this, RTK-Solar and the Skolkovo Foundation are launching the Cybersecurity Hub, the key task of which will be to support promising technologies in the field of protection against cyber threats.
Transfer Unified Threat Management Clients to UserGate Technologies
On May 26, 2022, RTK-Solar announced the transfer of clients of the Unified Threat Management (UTM) network threat protection service, previously connected to the Western solution, to the technology of the Russian company UserGate. Emergency switching is implemented within 1-2 days. At the same time, the service based on domestic developments was available to customers earlier as an alternative to the solutions of foreign vendors.
| | The level of cyber threats is growing dramatically, with most of the impacts dangerous to the infrastructure, including loading various ones, harmful ON implemented through network traffic. Against this background, in recent months, the demand for perimeter protective equipment, including firewalls the latest generation, has grown by 30-50%. At the same time, the presence of domestic solutions in the service portfolio turned out to be critical, - said Albert Mannanov, manager for the development of Solar MSS services at RTK-Solar. | |
| | RTK-Solar is an experienced service provider with professional expertise, and we are pleased that the company uses our solution to protect its customers. We also note that in early March we carried out all the necessary work to transfer our own IT infrastructure to data centers located in Russia. This will ensure the stable operation of UserGate solutions, their activation and update, - said Artur Salakhutdinov, Head of MSSP UserGate. | |
The UserGate solution used in the UTM service combines the latest generation firewall (NGFW) and intrusion detection system (IPS). The firewall monitors and filters traffic passing through it, organizing the safe use of the Internet by employees, blocking unwanted services, hosts, applications and protecting the internal network from illegitimate access from the Internet. And the IPS system monitors and blocks attacks by attackers using known vulnerabilities in real time.
UserGate also has an Internet filtering function. In particular, these are filtering by category, morphological analysis of page content, secure search, filtering banners and tracking scripts, download control, monitoring and statistics of Internet use.
Since the service is provided according to the service model, the customer company does not need to purchase and install expensive equipment on its network. At the edge of the corporate network of the organization, only special devices (Customer Premises Equipment, CPE) are installed, which are part of the service. The CPE routes all incoming Internet traffic over a secure channel to data centers where it is filtered.
The administration of the UserGate solution, configuration and support of communication channels is under the responsibility of RTK-Solar specialists, which allows you to unload the standard information security services of customers.
Participation in TAdviser HR IT Day
On April 13, 2022, within the framework of HR IT Day 2022 , the head of Solar addVisor at Rostelecom-Solar Aleksei Solovyov will present to the participants advanced methods for monitoring and improving the labor efficiency of employees in the current business reality.
In the past couple of years, companies have been forced to live in the new reality of remote or hybrid employee work. At the same time, according to a study by Rostelecom-Solar, 46% of managers are concerned about the effectiveness of work of employees working remotely. Taking into account modern economic conditions, the first priority for managers and HR specialists of companies is to increase the efficiency of personnel, to identify and use reserves of such an increase, which becomes the driver of business development.
At the same time, there are technologies on the market that allow you to automate the analysis of personnel performance and give managers and HR tools for the organizational development of the company. One of the most advanced such software products will be presented at the conference - Solar addVisor.
Solar addVisor analyzes the digital footprint of employee work activity. The system collects information about the applications and web resources used during the workflow, about the time spent in them, about meetings in the work calendar, about the start and end times of the work day, the volume of overhauls and other indicators. Such objective data on the work of employees per day, week allow the manager to make management decisions in the field of improving the efficiency of the work of subordinates.
After the manager's managerial impact on employees - internal or external training, prioritization of tasks, increased motivation, promotion, etc. - the product analyzes the change in the labor efficiency of employees and shows the dynamics of changes. Based on this, the manager can draw conclusions about the effectiveness of the previous decisions. Solar addVisor is a tool that helps you make informed, informed decisions based on objective data.
Some companies already use similar systems, but they often do not provide an objective picture of the effectiveness of personnel. Firstly, because, as a rule, each of them is designed to solve a narrow set of problems. Often such systems do not take into account the interaction of employees between departments. It is also common practice to enter aggregated data into the system by a person who can change it, bring subjective data, etc.
The objective information provided by Solar addVisor allows you to solve important tasks from the point of view of organizational development of the company. This is the identification and elimination of barriers to labor efficiency in the company, and the diagnosis of burnout of employees in order to prevent the outflow of valuable personnel, and balancing the burden on personnel, and optimizing PHY, and many other management tasks.
In March 2022, Solar addVisor was already highly recognized by Russian HR specialists and managers, receiving the Crystal Pyramid 2022 Grand Prix in the nomination "Best Remote Team Management System."
2021
TAdviser interview with Dmitry Bondar, Director of the Solar inRights Access Control Competence Center
In November 2021, Dmitry Bondar, director of the Solar inRights Access Control Competence Center of Rostelecom-Solar, spoke in an interview with TAdviser about the use of IDM/IGA systems. Read more here.
Opening of Solar JSOC branch in Rostov-on-Don
The company "Rostelecom-Solar" opened in Rostov-on-Don a branch of the commercial center for countering cyber attacks Solar JSOC. The regional division will provide cyber protection for organizations of the Southern and North Caucasus Federal Districts (Southern Federal District and North Caucasus Federal District), as well as a number of large federal customers. In September 2021, the work of the branch is provided by over 40 analysts and engineers responsible for monitoring cyber incidents and operating information protection tools. Rostelecom announced this on November 18, 2021. Read more here.
Opening of the Solar MSS cybersecurity services expertise center in Samara
Rostelecom-Solar, a subsidiary of Rostelecom, on September 7, 2021 announced the opening in Samara of a center for expertise on cybersecurity services Solar MSS and announced the transformation of this ecosystem. The center will provide cyber protection for regional state organizations, as well as large and medium-sized businesses in various constituent entities of the federation. Read more here.
The right to initiate blocking of phishing sites on Runet
Rostelecom-Solar will be able to initiate blocking of phishing sites in several domain zones. The company received this right by concluding agreements on the protection of Internet space from violations with three Russian organizations that administer domains, representatives of Rostelecom-Solar reported on June 15, 2021.
In particular, Rostelecom-Solar will cooperate with ANO National Internet Domain Coordination Center"" (administers domain zones .RU and), RF FAITID Technology and Infrastructure Assistance Fund Internet (administers.MOSCOW and.MOSCVA domains and 71 second-level domains) and ANO "" (RIPN administers a top-level domain). .SU
The practice of interaction of domain zone administrators with organizations competent in determining network violations has existed in Russia for more than 10 years. Having discovered sites that are used by cybercriminals for illegal activities, such organizations report this directly to domain name registrars and initiate blocking of a suspicious resource. As of June 15, the partners of the coordination center are 11 private information security companies and state organizations, and FAITID and RosNIIROS are 5.
| | "From year to year, we see a multiple increase in phishing attacks, and on the eve of holidays and mass vacations or against the background of high-profile news, the number of fake Internet sites with current topics increases by 30-40%. The statuses of a competent organization for key Russian domain zones will allow us to take a more active position in the fight against phishing and expand our capabilities to respond to cyber incidents, "said Vladimir Dryukov, director of the Solar JSOC Cyber Attack Response Center at Rostelecom-Solar. | |
Data phishing on the resources and resources distributing malicious software Rostelecom-Solar is collected from various sources: statistics to cyber attacks from the Solar JSOC countermeasures center, analysis of search results on the Internet, as well as monitoring. Darknet Up-to-date information is promptly transmitted to domain name registrars and domain zone administrators, which allows timely blocking access to a site that is used for illegal purposes. On average, blocking of an illegal resource in the above domain zones occurs within 1-2 days.
Joining the information security community FIRST
Rostelecom-Solar has become a full member of the largest international information security community FIRST (Forum of Incident Response and Security Teams), which brings together cyber attack responders from more than 570 organizations around the world. This was reported in the company "Rostelecom-Solar" on June 8, 2021.
The status of a FIRST participant gives Rostelecom-Solar access to an international database of current incidents. This is expected to strengthen proactive protection of customers from international cyber threats, as well as quickly exchange their own attack data with FIRST participants.
To obtain accreditation, FIRST Rostelecom-Solar have to proves the level of expertise and professionalism of its CERT. Among the criteria are: responsiveness, the quality of incident information collection, the safety of storing and processing applications from customers, and the surety of other FIRST members.
As part of FIRST, Rostelecom-Solar is represented by the RTSCERT team, which consists of experts from the Solar JSOC CERT center.
| | "Participation in FIRST is an important component for an effective investigation. The cybercrimes community database contains information about the types, virus software current vulnerabilities identified, botnets as well as determining the data regional binding of the attack, the level of its danger and potential consequences. All this allows community members to enrich their own knowledge bases and form preventive recommendations for companies. In addition, we have the opportunity to more effectively analyze the development of attack vectors in foreign jurisdictions, thus closing the needs of companies with an international network of branches, as well as predict which of the attacks observed by foreign colleagues may become relevant to the Russian market, "said the director of the Solar JSOC Cyber Rostelecom-Solar Attacks Center Rostelecom-Solar. Vladimir Dryukov | |
In addition to sharing technical information, FIRST provides the ability to communicate directly with CERT teams from other countries. According to the organization's policy, its members should assist each other in investigating incidents, which expands the possibility of obtaining information from different areas of responsibility. In addition to interaction on operational issues, community members organize working groups (as of June there are more than 10 of them, including Big Data, TI, vulnerability assessment, etc.). Participation in them allows not only to exchange experience, but also to jointly develop current approaches to solving problems in the field of information security.
2020
Inclusion in the TAdviser rating "The largest suppliers of information security solutions in Russia"
The company Rostelecom-Solar included in the rating "The largest suppliers of information security solutions in Russia" by revenue for 2020, "prepared by TAdviser in October 2021. Read more here.
Rostelecom-Solar became a member of three standardization committees under Rosstandart
On June 16, 2020, Rostelecom-Solar, the national provider company of services and technologies, cyber security announced its membership in three standardization committees under. As Rosstandart part of this work, the company's experts will participate in the discussion of standardization issues in the areas of cyber-physical systems (TK194), (cryptography TK26) and (information protection TK362).
As of June 2020, there are more than 200 technical standardization committees under Rosstandart. They bring together representatives of the state and business community, as well as independent experts to develop and discuss national and international standards for various industries.
| | Rostelecom-Solar specialists have expertise in the field of cybersecurity of various information systems, including automated process control systems (APCS), as well as IoT/IIoT - systems of the (industrial) Internet of Things, which are becoming more widespread. Rostelecom-Solar can make a significant contribution to the creation of a regulatory and technical framework, vital for accelerating the digital transformation of the economy, as well as promoting Russian approaches at the international level. For us, participation in the technical committees of Rosstandart is especially important, since in the future it will be business that will become the main consumer of the created standards, and we are glad to be able to use our expertise and experience to ensure the practical security of Russian companies, - said Sergey Paryev, Deputy Head of the Cybersecurity Department of the ICS for Research and Development, Rostelecom-Solar. | |
As of June 16, 2020, within the framework of the TK26, which deals with the use of cryptographic protection methods, information Rostelecom-Solar experts take part in the discussion of the draft standard for narrowband radio communications (). LoRaWAN This protocol is intended for exchange data with geographically distributed devices with low power consumption. The job of TK194 (cyber-physical systems) is to develop standards for applications in areas such as IoT/IIoT, digital twins smart manufacturing. The company's experts included in the committee participate in the formation of standards on the topic of (industrial) things Internet (IoT/IIoT). As part of the working group for TK362 (information protection), "Rostelecom-Solar" is involved in the discussion of the standard of the protected version of the DLMS/COSEM protocol for data exchange with metering devices (, water, electric power gas, etc.).
Based on the results of the work of expert groups, the formed GOSTs will be sent for approval to Rosstandart, after which they will become national standards. Rostelecom-Solar will continue to work as part of technical committees and discuss other standards.
Starting the direction of system integration
On February 13, 2020, Rostelecom"" announced the launch of a business area system integration based on a subsidiary of Rostelecom-Solar. The impetus for its creation was the challenges in the region. First information security of all, the need to provide a high level of protection cyber threats against those of state authorities and commercial organizations that are undergoing the stage of digital transformation and prefer the on-premium delivery model with the ability to further transfer the operation of protection systems to. outsourcing
Success in the system integration market largely depends on the maturity of the project management processes that exist in the company.
The expertise and practical experience that the company has acquired over the years of work in the service market, and cyber security which allowed it to take a leading position in this segment, will now be aimed at ensuring real security for those companies that choose the on-premium delivery model.
| | We know how to ensure practical safety, have experience with a wide variety of technological solutions, and most importantly, we understand the need for customers to easily and conveniently operate protection systems after the project is completed. And the serious resource pool of Rostelecom-Solar, uniting a staff of experts in the field of system integration and a network of points of presence in the regions, guarantees customers a thorough study and high-quality support of projects throughout Russia, says Igor Lyapunov, Vice President of PJSC Rostelecom for Information Security, CEO of Rostelecom-Solar
| |
Thus, now the business structure of Rostelecom-Solar includes three areas. The key is the provision of protection technologies in the service model, which implements Rostelecom's mission in the field of cybersecurity. It is represented by the services of the first and leading commercial center for monitoring and responding to cyber attacks Solar JSOC, as well as managed cyber security services Solar MSS. The direction of system integration ensures the need for information security of those companies that prefer to build protection against cyber threats within the organization. However, they can subsequently give the operation of protective equipment to an external contractor. Finally, the development of its own products allows Rostelecom-Solar to offer customers solutions that meet their needs as much as possible.
| | The direction of system integration is logically integrated into the structure of the company's activities. Now the customer can get the information security project of the full cycle "from a single window" regardless of the chosen format of delivery of technologies, goals and scale of the project, Dmitry Gorbatov, Director of Integration at Rostelecom-Solar
| |
2019: Cooperation with Samara Academician Korolev University
On January 30, 2019, Rostelecom-Solar, a national provider of technologies and services for protecting information assets, monitoring and managing information security, announced that it had entered into a strategic partnership agreement with the Samara National Research University named after Academician S.P. Korolev. Read more here.
2018
As of September 2018, Rostelecom-Solar acts as a national provider of services and technologies for the protection of information assets, targeted monitoring and information security management.
International Partner Agreements
The developer of information security solutions Rostelecom-Solar has concluded a number of partnership agreements to promote the Solar inCode solution in the international market. One agreement is signed with Sense of Security Pty Ltd., which provides a range of information security services that operates in Australia. Another agreement was concluded between Rostelecom-Solar and Parasoft. Within its framework, Parasoft will offer a security analysis solution for Solar inCode source code to its customers in Singapore, Malaysia and Vietnam, gradually entering other Southeast Asian markets.
Logo and Name Change
After the purchase of Solar Security in May 2018 by Rostelecom, the company changed its name to Rostelecom-Solar and updated its logo.
The updated logo clearly displays the fact that the company now operates on the market as a subsidiary of Rostelecom.
Purchase of Rostelecom
In May 2018, Rostelecom announced the acquisition of 100% of Solar Security. The transaction amount is 1.5 billion rubles, said Mikhail Oseevsky, president of Rostelecom. It is planned to complete the legal registration of the transaction in the first half of 2018.
Solar Security will operate on the market as a subsidiary of Rostelecom under the operator's brand. At the initial stage, Solar Security will continue to operate under its own brand, but in the future its name should change. One of the options under consideration is RTK Cybersecurity, the company said.
Solar Security CEO Igor Lyapunov will continue to lead the company. He will also take the post of vice president of Rostelecom.
The Rostelecom team, which was engaged in commercial cybersecurity services, consisting of "several dozen" people will join Solar Security, Oseevsky told TAdviser. In total, at the time of the transaction, the total number of teams of both companies that will work in the information security subsidiary of Rostelecom is about 350 people.
Based on Solar Security, Rostelecom will create a competence center for commercial cybersecurity services and plans to become a "national cybersecurity provider," the company said.
Solar Security will switch the technological developments of Rostelecom in the field of services and information security solutions.
As part of Rostelecom, Solar Security will focus on solutions for monitoring, security management, and the development of cyber attack response centers in its development. The second emphasis will be the provision of information security according to the service model: from infrastructure to control systems. The third is the focus on the creation of domestic information security technologies as part of the import substitution course, Solar Security said.
| | It is important that we will develop our cybersecurity services not only at the level of federal government agencies, but also at the regional level, our network of work with clients will be expanded to the entire geography of Rostelecom's presence, - said Mikhail Oseevsky. - This is a new step forward, since before that both Rostelecom and Solar Security mainly worked with large customers. | |
Solar Security at the time of sale to Rostelecom estimates its share in the SOC (Security Operations Center) services market at about 86%. The company predicts the growth of the security services market multiple per year and plans to maintain this market share.
The participants in the transaction did not specify forecasts for the revenue of the new subsidiary at the time of its announcement. According to Oseevsky, over the past year, revenue from the operator's cybersecurity direction has approximately tripled. He added that their plan involves the growth of such revenue at times in the medium term.
After joining Rostelecom, Solar Security sees synergy with Rostelecom's competencies and customer coverage as its main competitive advantage. The company largely plans to offer its services through its channels, said Igor Lyapunov.
Plans to buy Rostelecom
In February 2018, it became known about Rostelecom's plans to acquire Solar Security. The companies have reached a preliminary agreement, after agreeing on the details, the consideration of the transaction will be submitted to the board of directors of Rostelecom, RBC reports citing its sources.
According to one of them, the sale of Solar Security to Rostelecom may be closed in the second quarter of 2018. The companies refrained from commenting on the publication's requests.
The deal could amount to about $20-25 million (1.14-1.43 billion rubles at the exchange rate as of February 7, 2018), said Alexander Chachava, managing partner of the LETA Capital venture capital fund, who is also aware of the negotiations between Solar Security and Rostelecom.
Raiffeisenbank analyst Sergei Libin estimates Solar Security at about 1 billion rubles. The purchase of such a company fits into the logic of "Rostelecom," which in recent years has been trying to evade the provision of traditional communication services, the income from which is falling, the expert said.
A RBC source familiar with the details of the upcoming deal claims that Rostelecom has ambitious plans to enter the information security market, and recalls that the state operator also entered the data center market through a takeover by buying SafeData.
| | Solar Security was one of the first to bring a monitoring service (SOC) to information security the commercial market, and due to a competent strategy, it managed to stake out its position as a leader in this growing segment, says an information security expert. Cisco Alexey Lukatsky | |
Rostelecom has its own center for monitoring and responding to cyber threats, which solves mainly the company's internal tasks, but the operator had plans to present such services to third-party customers, a top manager of one of the IT companies told the publication.[2]
2017
Interview with TAdviser of CEO Igor Lyapunov
In November 2017, Igor Lyapunov, CEO of Solar Security, in an interview with TAdviser spoke about the People Centric Security concept, products built on the basis of this ideology and the technological prospects of the information security market.
Positive Technologies and Solar Security will create turnkey GosSOPKA centers
The companies Solar Security Positive Technologies launched in November 2017 a joint business direction to create departmental and corporate centers state for the detection, prevention and elimination of the consequences of computer attacks on information resources () of the Russian Federation based on State system of detection, prevention and elimination of consequences of computer attacks a complex of technologies and expertise of Positive Technologies, as well as Solar Security services for monitoring and responding to incidents.
2016: Revenue of RUR 361 mln
According to the Kontur. Focus database, in 2016, Solar Security's revenue amounted to about 361 million rubles.
2015
For 2015, Solar Security's product and service line includes:
- JSOC (Jet Security Operations Center) - a set of services for monitoring and managing information security, responding to cyber threats, monitoring the security of infrastructure and business applications;
- Solar Dozor (formerly "Watch-Jet") is a DLP system designed to control employee communications and optimized for the task of detecting corporate fraud;
- Solar inView (formerly Jet inView Security, JiVS) - an analytical system that is the basis of information security situation centers and decision support systems;
- Solar inRights (formerly Jet inView Identity Manager, Jet inView IdM) is a centralized system for managing accounts and access rights in heterogeneous information systems.
2014
In 2014, the total sales of Dozor-Jet, JiVS, Jet inView IdM and JSOC services within the framework of the Jet Infosystems business amounted to 768 million rubles. Solar Security in 2015 plans to increase the sales rate of its products and services to 1.1 billion at the prices of the end consumer. Including due to the growth in the number of sales, the expansion of the partner network and, accordingly, the customer base, as well as the expansion of its presence in the markets of power, government organizations and retail.
| | Firstly, the division of businesses will allow us to concentrate our efforts on products and expanding the product portfolio, "commented Igor Lyapunov, CEO of Solar Security. - And secondly, our key feature is a new business scheme for the Russian information security market. We have transformed the classic model of the software manufacturer into a service provider model (MSSP), when the client is provided not with separate software or equipment, but with a holistic business function. This model will allow us to ensure the targeted use of security technologies with their exact adjustment to the tasks of each client. This significantly increases the return on security technologies. | |
Notes
| The site content is translated by machine translation software powered by PROMT. The machine-translated articles are not always perfect and may contain errors in vocabulary, syntax or grammar. Read original article If you find inaccuracies or errors in the results of machine translation, please write to editor@tadviser.ru. We will make every effort to correct them as soon as possible. |