Vulnerability Assessments
Our vulnerability assessment services give your organization a clear picture of your current security posture. Our services can highlight vulnerabilities to known exploits, and discover new vulnerabilities in your web systems or custom-developed applications. Our top of the line TruShield security scanning appliance can automatically detect and scan every device in all of your environments to include webservers, application and database servers, customer facing systems, teller line technologies, back office operations, network appliances and workstations. TruShield removes the element of surprise by uncovering the vulnerabilities and potential avenues of attack which could be used to penetrate your network and gain access to your data. TruShield arms you with the knowledge you need to correct any discovered deficiencies and assure the security of your information systems.
Our methodology
The vulnerability assessment is typically performed according to the following methodology:
- Catalog assets and capabilities(resources) in a system
- Identify open ports on servers that could be exploited to attack your network.
- Identify servers running services that are not needed for specific business purposes
- Identify website applications that could be attacked to compromise your network
- Identify misconfigurations which could lead to compromise
- Identify the potential threats to each resource
- Review the overall risk profile of a system, including threats stemming from malicious individuals, natural disasters, accidents or other incidents
- Identify the areas of highest risk - highly critical vulnerabilities; vulnerabilities which could be easily exploited; vulnerabilities which may enable the attacker to use the organization as a staging ground for further attack
- Produce report recommending
steps to eliminate the highest risks to the stability and security of the system and reduce overall risk to a level acceptable to the system owner.
- Preparation of recommendations designed to eliminate or mitigate the risks posed by identified security vulnerabilities.
Primary Products
Industries of Operation
Additional Services
Policy Center
Need a password, incident response, or change control policy………no worries, we have done the hard work for you.
Rent-a-CSO
Our Chief Information Security executives could manage every aspect of your information security for your organization. Our expert will design and implement your day-to-day security strategy for less than the cost of a part-time employee.