|
|
 |
|
 |
 |
| |
The necessity for ongoing Security Audits is twofold: Security Audits reduce the possibility of network downtime due to Security Incidents and, secondly - should a security incident occur - documentation of a company’s history of prior security audits and follow-up remediation constitutes the evidence of due diligence necessary to the possible reduction and/or elimination of legal liability in the event of a breach of security.
Pivot Networks provides several security auditing services to determine your company's exposure to outside attacks through its LAN, WAN or Intranet.
If you have network security concerns, our external and internal security audits will identify and eliminate any security vulnerabilities in your systems. If your systems are clean, a Pivot solution will ensure that they stay clean.
Each Pivot Networks’ Security Audit includes a comprehensive series of scans and tests designed to expose existing network security vulnerabilities. Following each Audit, Pivot Networks consultants will provide your company with a detailed Report “scorecard” specific to your current network security status, as well as Security Remediation Services to help you make hardware and software configuration changes to the devices flagged in the Report. These analyses include: |
|
|
- Machine Break-ins
- Domain Hijacking
- Denial of Services Attacks
- Cracking of user passwords
- Retrieval of sensitive documents
- Network insertion of backdoors, sniffers, viruses, etc.
- Physical Access to sensitive hardware or software
An External Security Audit will test your network devices and servers for vulnerability to a wide range of exploits, viruses, worms and other common Internet attacks. On completion of the audit,. Typical completion time for an External Security Audit on small networks (less than 50 devices) is 5 days.
An Internal Security Audit starts with a threat-discovery meeting in which specific security problems are defined. Typical security problems include frequent virus outbreaks, unauthorized access to sensitive email or documents, unauthorized network bandwidth usage, or a lack of a well-defined company security policy. Once the problem definition is complete, Pivot Networks will work with you to determine options to minimize or eliminate the security problems. A final report will be made detailing the problems, risks, and recommended changes. An Internal Security Audit usually takes between 5 and 15 days to complete but depends upon availability of IT personnel at your company.
The ultimate test of any network security is to survive an attack by experienced and determined crackers. To help eliminate problems such as internal virus outbreaks and unauthorized LAN traffic monitoring, Pivot Networks will attempt a variety of attacks and break-ins – including mock Phishing attacks - on your machines that would be typical of those most likely to target your company. If you anticipate attacks coming from individuals with limited resources and knowledge (e.g., "script kiddies"), this can be a relatively inexpensive operation. However, if you anticipate attackers with Government or corporate resources, a realistic attack can be more expensive to mount and may require specialized hardware, personnel, travel expenses, and other resources.
Following this exercise, Pivot consultants will provide you with a report detailing both the security weaknesses we found in your system as well as the steps taken by Pivot to mount the ‘attack’ on your system. Recommendations will be provided to correct the security flaws discovered during the Audit, and Pivot Networks offers follow-up, Security Remediation Services to help correct such problems.
Pivot Networks will work onsite with your IT department to harden any hardware or software against attack, break-in, or other security issue.
|
|
|
 |
|
|
 |
|
