Startup weekend #swmiami has some very unique ideas that can definitely launch a few companies, http://bit.ly/cANrOJ
we had a good time at the #iCoast #CIO Council conference today, thanks to everyone who stopped by our booth, www.kraasecurity.com
http://bit.ly/bZW6pZ -I will be at the #iCoastCouncil State of the CIO - 2010 hosted by Gary Beach, #CIOMagazine, mar 17th Ft Lauderdale FL
Just finished a Social Engineering proposal, its amazing how the bad guys can get past your technology controls so easily
KRAA Security was listed as one of the Top Ten Security companies by #SiliconIndia magazine, http://bit.ly/9Js4xX
Host Security Assessment - Network Security Audit | Host Configuration Review | KRAA Security

Host Security Assessment

 

Problem

Internal hosts can be vulnerable to a number of attacks if they are not tested through means other than network security assessment. An application running on a critical server may allow an attacker access. Host Security Assessments are critical but frequently are not done on a scheduled, timely basis. In many organizations, a baseline host configuration standard is not used, or critical servers are placed on the network before being tested for vulnerabilities either in the operating system or the applications running.

Solution

Host Security Assessment is used to determine the security posture of critical servers in your environment. We conduct audit, automated tests of the operating system and application-level security issues and check administrative and technical controls. Identified weaknesses and potential weaknesses are mapped against the risk level to the organization and recommendations are made. We analyze your host security policies and procedures and your risk classification standards for information assets. Key areas where we do assessment and look at include but are not limited to:

· Secure configuration

· Separation of privileges

· Logging and auditing

· Account Management and Security

· File Management and Security

· Patch Level

· Network Security

· General Security Management

· Intrusion detection methods

· Disaster recovery measures

The key servers that are selected for diagnostic review and security assessment will cover the following aspects of security audit:

· Review security of servers and determine what vulnerabilities exist.

· Logging and auditing review

· Account Management and Security

· Patch and remediation process analysis

· General Security Management on an ongoing basis

How the Process Works

Our team will go on site and do automated testing & assessment of critical servers and applications running on those servers. We will review policies and procedures around host configuration and make recommendation to fix any deficiencies in audit. We will review any baseline standards for host deployment and configuration and test that against industry best practices for the particular function of the server. You may choose to have us do a retest using only automated techniques after you have completed the recommended fixes.

 

Rapid Assessment Purchase


List All Products
Show Cart
Your Cart is currently empty.

pci-asv2

 

Contact Us: (Antispam Question- What is 1+1?)
Name
Phone
Email
Company
Interest

right_banner1