Network Security Assessments
Is your internal network and your perimeter secure?
Service Description:
External Network Security Assessment (ENSA): A real-time, real-world assessment of your network perimeter and exposure to the Internet. This is a manual test performed by an experienced consultant against your Internet exposure points.
Internal Network Security Assessment (INSA): A real-time, real-world assessment of your internal (Intranet) exposure to malicious employees and contractors. This is also a manual test performed by an experienced consultant against you critical internal IT assets.
Common Vulnerabilities Identified:
- Rogue employee or outside hacker run file sharing services such as FTP, Peer to Peer (P2P), IRC, instant messaging, and other violations of your acceptable use policy.
- Critical and confidential data stored in unsecured areas such as salary/HR data, M&A data, sensitive emails, PAN data (credit card numbers), and personal privacy data (SSN’s/DOB).
- Rouge and/or undocumented web servers that did not pass through proper approval channels.
- Insecure servers that house sensitive data and have not been properly hardened and/or patched.
- Lack of proper network segmentation and egress filtering.
Benefits
- Provides your organization with a view of your current network security posture.
- Decreases business risk by enhancing the security of your network.
- Provides demonstrated due diligence.
- Measures your network against current best practices and standards.
- Ensures that your network is sufficiently hardened to survive a concerted attack.
- Ensures employee adherence to your security and acceptable use policies.
PTP Advantages
- PTP consultants have demonstrated experience in performing these assessments. The author of our methodology has over 10 years experience in performing network level assessments.
- PTP consultants have performed over 50 of these assessments.