|
|
|
|
|
 |
 
|
|
Vulnerability Assessment
A Vulnerability Assessment is a simple process to determine the current state of security. It usually entails using a standard Vulnerability Scanning tool such as eEye Retina, reviewing the results of the scan and filtering out obvious false positives.
Unlike a more involved Penetration Test, Vulnerability Assessments do not require proof of an Attack Vector and therefore take much less time to complete.
Vulnerability Assessments are recommended after a full Penetration Test. They should also be conducted on timely basis to ensure that no new security holes appear in the network as a result of upgrades or new deployments.
|
External Vulnerability Assessment |
Internal Vulnerability Assessment | External Vulnerability Assessment This test is a way to assess the security of the organizations edge network. Web, Email and other Internet facing servers are scanned using standard port and vulnerability scanning tools. The results are examined for obvious false positives and compared against online vulnerability databases.
Each vulnerability is assigned a severity based on the potential risk it carries. A list of all potential vulnerabilities is combined into a report together with recommendations on how to fix them. Internal Vulnerability Assessment Malicious attacks are not limited to the external Internet. Research has shown that most malicious behavior comes from within the organization, usually from disgruntled employees or improperly deployed software. It is therefore important to deploy and maintain sound internal security controls and policies to protect the Intranet.
During an Internal Vulnerability test all internal network equipment and computing systems are scanned for potential vulnerabilities. The results are examined for false positives and a report listing all potential vulnerabilities is generated sorted by severity level. Recommendations on how to fix the issues discovered are included in the report. Ongoing Vulnerability Management In larger organizations where servers and workstations are being constantly deployed, it becomes necessary to perform ongoing vulnerability scans. In addition, with the amount of network equipment that needs to be constantly reviewed, it is desirable to have an advanced vulnerability and incident management system that will integrate with the ticketing, helpdesk an other applications.
NetSieben can help an organization deploy on demand Vulnerability Scanning and Management tools, that provide a constant watch on the security of the network, reducing management concerns over the potential risks facing the organization.
For more information or pricing please call us at (866) 395-1047 or fill out this secure form. |
|||||||||||||
Home
::
Company
::
Contact
::
Sitemap
 ©2006 NetSieben Technologies Inc. All Rights Reserved. |
 |
|
|
||
|
||
|
||
|
||
