Pradeo Security Systems

Mobile Threat Defense

Pradeo Security Mobile Threat Defense solution offers a complete, automatic and seamless mobile threat protection securing Apps, Network and Devices. The solution aligns with your organization security policies & preserves business agility. Pradeo MTD is integrated with major MDM's.

Features

  • Pro-active protection of Apps, Networks, Device
  • Remote access
  • One-click integration with MDM
  • Complete mobile threat protection
  • Static and dynamic analysis of app's binary code
  • Compatibile with all OS (Android, iOS, Windows, BYOD)
  • Service set up (SaaS or On Premise)
  • Automatic update of blacklists
  • Customisable security criteria
  • Real-time reporting

Benefits

  • Adapts to your environment, secures Android, iOS, Windows & BYOD
  • Secures Apps, Networks & Device by accurately detecting threats
  • Detects behaviors and vulnerabilities
  • Automatically update apps blacklist on your MDM
  • Integrates in one-click with your MDM solution
  • Secure data on end-users devices
  • Ameliorate smartphones' user experience for your employees
  • Automatically updates security criteria and does not restrict the user
  • Identify what personal data your apps handle (GDPR compliance)
  • Sets specific security policies to match your company's requirements

Pricing

£3.49 per unit per month

  • Education pricing available
  • Free trial available

Service documents

G-Cloud 10

293448152729847

Pradeo Security Systems

Alicja Bialas

00447940990079

alicja.bialas@pradeo.com

Service scope

Service scope
Software add-on or extension Yes, but can also be used as a standalone service
What software services is the service an extension to MDMs: AirWatch, MobileIron, Soti, IBM MaaS360.
Cloud deployment model Private cloud
Service constraints The ProtectMyFleet solution is available for all OS (Android, iOS, Windows 8/10). However, we cannot install our agent on iOS once there is an existing MDM agent. Our teams are currently working on developing a dedicated iOS agent (as of today we can propose a private agent that can be installed in addition to the MDM’s one).
System requirements Android, iOS, Windows 8/10

User support

User support
Email or online ticketing support Email or online ticketing
Support response times Day-to-day response from Monday to Friday.
User can manage status and priority of support tickets No
Phone support Yes
Phone support availability 9 to 5 (UK time), Monday to Friday
Web chat support No
Onsite support Onsite support
Support levels Our Production & Customer Support is available to our clients from Monday to Friday between 8.30-5.30PM (UK time). We provide the email/phone customer service starting from launching the Proof of Concept phase - at no additional cost.
Support available to third parties No

Onboarding and offboarding

Onboarding and offboarding
Getting started Users obtain documentation and have their technical contact in our team. Moreover, customers' get an online presentation of the service to help them understand all its features.
Service documentation Yes
Documentation formats PDF
End-of-contract data extraction Upon a simple request to Pradeo.
End-of-contract process All licences are ended.
All customers data are destroyed.

Using the service

Using the service
Web browser interface Yes
Supported browsers
  • Internet Explorer 7
  • Internet Explorer 8
  • Internet Explorer 9
  • Internet Explorer 10
  • Internet Explorer 11
  • Microsoft Edge
  • Firefox
  • Chrome
  • Safari 9+
  • Opera
Application to install Yes
Compatible operating systems
  • Android
  • IOS
  • Windows
Designed for use on mobile devices Yes
Differences between the mobile and desktop service By accessing our Pradeo Apps Security desktop platform you:
- set up your security policies,
- set up apps validation policies & users' groups for different security policies,
- consult audit raports of the applications running in your fleet,
- integrate with your EMM solution.

By our mobile Pradeo Apps Security agent you:
- provide 360° mobile threat protection,
- connect devices to AppsSecurity server and automatically download latest security policies,
- get information about the current level of threats on your device.
Accessibility standards None or don’t know
Description of accessibility N/a
Accessibility testing N/a
API No
Customisation available Yes
Description of customisation Customers can set their own security policies and assign them for different groups of device users. Applications will be analyzed in regards to your company's security policy. If you wish to allow your users to use an application that is not compliant with previously set policy you can
also manually accept the application.

Scaling

Scaling
Independence of resources PRADEO undertakes to maintain the best possible availability of the Services for
the Client. This guarantee is not total in terms of availability and performance given
the very structure of the internet network and the traffic of users at certain times.

Analytics

Analytics
Service usage metrics No

Resellers

Resellers
Supplier type Not a reseller

Staff security

Staff security
Staff security clearance Staff screening not performed
Government security clearance Up to Baseline Personnel Security Standard (BPSS)

Asset protection

Asset protection
Knowledge of data storage and processing locations Yes
Data storage and processing locations European Economic Area (EEA)
User control over data storage and processing locations No
Datacentre security standards Managed by a third party
Penetration testing frequency At least once a year
Penetration testing approach In-house
Protecting data at rest Encryption of all physical media
Data sanitisation process No
Equipment disposal approach Complying with a recognised standard, for example CSA CCM v.30, CAS (Sanitisation) or ISO/IEC 27001

Data importing and exporting

Data importing and exporting
Data export approach Data could be retrived via our portal Pradeo Apps Security.
They are also available via web services.
Data export formats Other
Other data export formats PDF
Data import formats CSV

Data-in-transit protection

Data-in-transit protection
Data protection between buyer and supplier networks Private network or public sector network
Data protection within supplier network Other
Other protection within supplier network Secure internet connection

Availability and resilience

Availability and resilience
Guaranteed availability Pradeo is committed to providing a 24/7 service with an annual availability rate of 99.90% for its SaaS solutions.
The following cases are not included in the calculation of the availability rate:
- Maintenance of the application service in the context of programmed operations. In this case, access to the service may be interrupted in order to carry out scheduled maintenance operations. Pradeo undertakes to ensure that these operations do not exceed a total of 2 hours per month and that they are programmed outside the time slots of the solution (ranges defined in agreement with the customer of the service).
- Force majeure event.

In case of interruption of the application service, Pradeo undertakes to immediately inform its customers and partners.
Approach to resilience Information available on request.
Outage reporting Email alerts

Identity and authentication

Identity and authentication
User authentication needed Yes
User authentication Username or password
Access restrictions in management interfaces and support channels There are different categories of users:
- administrator,
- sub-administrator.
Access restriction testing frequency At least every 6 months
Management access authentication Username or password

Audit information for users

Audit information for users
Access to user activity audit information Users contact the support team to get audit information
How long user audit data is stored for User-defined
Access to supplier activity audit information Users contact the support team to get audit information
How long supplier audit data is stored for User-defined
How long system logs are stored for User-defined

Standards and certifications

Standards and certifications
ISO/IEC 27001 certification Yes
Who accredited the ISO/IEC 27001 KPMG UK
ISO/IEC 27001 accreditation date 31/12/2013
What the ISO/IEC 27001 doesn’t cover N/a
ISO 28000:2007 certification No
CSA STAR certification Yes
CSA STAR accreditation date 31/12/2015
CSA STAR certification level Level 1: CSA STAR Self-Assessment
What the CSA STAR doesn’t cover N/a
PCI certification No
Other security certifications Yes
Any other security certifications
  • SOC 1 type II (SSAE 16 et ISAE 3402)
  • SOC 2 type II

Security governance

Security governance
Named board-level person responsible for service security Yes
Security governance certified Yes
Security governance standards ISO/IEC 27001
Information security policies and processes Our IT (server and web-server) environments are fully externalized at OVH, therefore our environment is compliant with the following standards:
- ISO27001:2013, certification delivered by KPMG UK.
- STAR self-assessment - Cloud Security Alliance.
- SOC 1 type II (SSAE 16 et ISAE 3402) and SOC 2 type II
We put an environmental charter in place, also looking to improve the work environment of our employees. Therefore we already adhere to the
- ISO14001 standard, we will target ISO14001:2015 certification in the next years. At this moment we are putting the charter and processes in place, we expect to execute our first audit (initial steps) in 6 months time-frame as preparation for the certification.
- OHSAS 18001. Pradeo is already compliant with the “French Labour Laws” with the formal process of having a “document unique” which is a similar to the BS OHSAS 18001 framework for an occupational health and safety management system. Honestly speaking, with respect of the actual size and business of Pradeo we are already fulfilling the OHSAS 18001 standards. We are not targeting due to these reasons specific OHSASA 18001 certification, but we are 100% compliant to the OHSAS 18001 standards.

Operational security

Operational security
Configuration and change management standard Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
Configuration and change management approach Our IT (server and web-server) environments are fully externalized at OVH, therefore our environment is compliant with the following standards:
- ISO27001:2013, certification delivered by KPMG UK.
- STAR self-assessment - Cloud Security Alliance.
- SOC 1 type II (SSAE 16 et ISAE 3402) and SOC 2 type II
We put an environmental charter in place, also looking to improve the work environment of our employees. Therefore we already adhere to the
- ISO14001 standard, we will target ISO14001:2015 certification in the next years.
- OHSAS 18001.
Vulnerability management type Undisclosed
Vulnerability management approach Our IT (server and web-server) environments are fully externalized at OVH, therefore our environment is compliant with the following standards:
- ISO27001:2013, certification delivered by KPMG UK.
- STAR self-assessment - Cloud Security Alliance.
- SOC 1 type II (SSAE 16 et ISAE 3402) and SOC 2 type II
We put an environmental charter in place, also looking to improve the work environment of our employees. Therefore we already adhere to the
- ISO14001 standard, we will target ISO14001:2015 certification in the next years.
- OHSAS 18001.
Protective monitoring type Undisclosed
Protective monitoring approach Our IT (server and web-server) environments are fully externalized at OVH, therefore our environment is compliant with the following standards:
- ISO27001:2013, certification delivered by KPMG UK.
- STAR self-assessment - Cloud Security Alliance.
- SOC 1 type II (SSAE 16 et ISAE 3402) and SOC 2 type II
We put an environmental charter in place, also looking to improve the work environment of our employees. Therefore we already adhere to the
- ISO14001 standard, we will target ISO14001:2015 certification in the next years.
- OHSAS 18001.
Incident management type Undisclosed
Incident management approach Our IT (server and web-server) environments are fully externalized at OVH, therefore our environment is compliant with the following standards:
- ISO27001:2013, certification delivered by KPMG UK.
- STAR self-assessment - Cloud Security Alliance.
- SOC 1 type II (SSAE 16 et ISAE 3402) and SOC 2 type II
We put an environmental charter in place, also looking to improve the work environment of our employees. Therefore we already adhere to the
- ISO14001 standard, we will target ISO14001:2015 certification in the next years.
- OHSAS 18001.

Secure development

Secure development
Approach to secure software development best practice Supplier-defined process

Public sector networks

Public sector networks
Connection to public sector networks No

Pricing

Pricing
Price £3.49 per unit per month
Discount for educational organisations Yes
Free trial available Yes
Description of free trial We propose a Proof of Concept for Mobile Threat Defense solution.
Client has access to the platform for 1 month and can enroll up to 10 devices to the platform.

Service documents

pdf document: Pricing document pdf document: Service definition document pdf document: Terms and conditions
Service documents
Return to top ↑