Problem

Technology is frequently mis-configured or mismanaged, which in turn introduces points of weakness into the organization. Every device connected to the network has the potential to allow an attacker in. Vulnerability assessment can be used against many different types of systems such as networked based, host based or application based. A company needs to know what threats are inherent in the infrastructure based on current and future technology purchases. Vulnerability Assessments are necessary to identify vulnerabilities, but also are necessary to show changes in the environment over time as the organization grows and changes. Future threats need to be address through vulnerability assessment and trend analysis.

Solution

A practical approach to vulnerability reduction is needed with strategy development. Vulnerability analysis is the frontline in securing the organization and a custom built methodology will be developed to utilize your personnel and financial resources to provide the best solution to meet your business needs. We provide a programmatic approach for evaluating technical, administrative and management security controls across your environment. Vulnerability scanning is a necessary tactical approach to securing all the “low-hanging” risk in your infrastructure. We will conduct tests against your Internet perimeter and internal systems using real world attacks techniques, both automated and manual.

Key value propositions for a Vulnerability analysis include:

• Methodology development
• Analysis of remediation process and solution development
• Metrics development and reporting
• Manual and automated testing procedures
• Review of network, operating system, application and end-point security measures
• Development of key remediation recommendations
• Policy development to maintain proper vulnerability remediation procedures

How the Process Works

We will scan your external and internal networks for vulnerabilities. Once identified, we will attempt to validate the vulnerability and provide detailed recommendations to fix the problems. We will review your policies and procedures around vulnerability management and provide practical steps to ensure management of vulnerabilities in the future is detailed and can change as the organization implements new technologies. You may choose to have us do a retest using only automated techniques after you have completed the recommended fixes.