Print
 Close Window

Solutions

Information Technology Security

Denysys provides the full spectrum of security services that can cover all an organization’s security needs—including information and infrastructure protection—as well as scrutinizing all processes and procedures that can impact their security.

Our services include:
•External and internal vulnerability assessment
•Complete in-depth technical assessment
•Certification and accreditation evaluation
•Compliance monitoring
•Incident response
•Forensic response

Because of the pervasive nature of the threats to an organization’s security, no one fix can hope to address all security concerns. Therefore, the security services we offer are interrelated. Our assessment services provide the baseline data for certification, accreditation and our compliance monitoring services. Incident response and forensic response are event-driven activities that can be procured as a one-time service or on a subscription basic. We can also work with clients to arrive at a customize approach that addresses your unique security needs.

We deliver these services through staff augmentation, co-sourcing and technical and business process outsourcing.

Vulnerability Assessment
External Assessment—An external vulnerability assessment evaluates a client’s network security from the outside looking in. This tools-based assessment analyses the client’s points of presence on the Iinternet (firewalls, routers, etc.) which represents an organization’s first line of defense against an attach launched from outside the enterprise. This assessment is meant to identify information, machines and configuration weak points that could be exploited by an intruder.

Internal Assessment—An internal vulnerability assessment evaluates the organization’s network security from the inside looking out. Particular attention is paid to the individual parts of the configuration and implantation weakness that could place the network at risk from inside the organization. This primarily tool-based, rapid technical assessment focuses on a segment of a client’s IT infrastructure. The assessment identifies information, machines and configuration weak spots that could be exploited by a trusted insider or malicious outsider. This assessment is designed to determine the degree to which a organization’s most critical information systems and infrastructure components are susceptible to intentional attack or accidental compromise as a result of weaknesses or vulnerabilities inherent in most popular applications and operating systems.

Technical Assessment—Most organizations require a security assessment program that included implantation planning, methodology tailoring, an enterprise-wide assessment strategy and a plan for periodic reassessment. The complete technical vulnerability assessment provides this. Our security experts use a variety of software tools (proprietary, open source and commercial), penetration techniques and procedures to evaluate every identified device within the organization. The parameters of this assessment are largely customer driven and typically include:

External network scan—Evaluation of network security from the outside. The defensive perimeter (firewall, routers, etc.) is tested

Internal network scan—Evaluation of network security from the inside. This assessment also includes a Dial-up Access Evaluation and examines the organization’s policies, standards and procedures. It alsoidentifieswhich of the organization’s most critical information systems and infrastructure components are susceptible to intentional attack or accidental compromise as a result of weaknesses or vulnerabilities inherent in most popular applications and operating systems.

Risk and Threat Assessment
These assessments provide a quantitative evaluation of the overall information-rich posture of an organization. In these assessments, such values as asset replacement cost, threat impact and the likelihood of occurrence, lost impact, etc. are quantified to support dollar calculations of lost exposure, return on protective investment and residual risk. A risk and threat assessment provides an organization’s decision makers with the comparative data needed to make an informed information and infrastructure protection investment. Some of the quantitative values generated by a risk/threat assessment include: asset replacement cost; cost to implement safeguards; annual frequency estimates; and single loss expectancy.

Investigation Incident Response
Denysys can provide crisis savvy security professionals to assist you in detecting and eliminating incidents in systems and networks. Our experts can provide the expertise to deal with the technological, operational, legal and procedural obligations necessary for an effective incident response. We can assist you in quickly containing, analyzing and determining the appropriate remediation. Occasionally, our investigation may point to a forensic response to allow for post-incident prosecution. When an organization is under attack, the severity can be characterized across a range from critical to moderate to normal. Once we have determined the severity of the attack, our security professionals will craft an appropriate response level.

Forensic Response
This service maximizes an organization’s reaction capacity and facilitates the prosecution of computer crimes originating from inside or outside the network. Such crimes include network intrusions, unauthorized access, embezzlement, harassing or unethical e-mails. A typical forensic response can include: initial response; seizure of appropriate equipment; assessment of evidentiary value; preservation;duplication of appropriate media; investigation (network-based and computer media analysis); and report creation.

Certification & Accreditation
Certification is the comprehensive evaluation of the technical and non-technical security features of an information system and other safeguards supporting the accreditation process to establish the extent to which a design or implementation meets a specific security requirement.

Accreditation is the formal declaration by those in authority that an information system is approved to operate in a given security mode.

What makes this necessary are long-standing DOD and federal civil agency standards like DITSCAP, NITISSI and NIACAP. Some recent government acts that mandate certification and accreditation include the Government Information Security Reform Act (GIRSA), the Health Insurance Portability and Accountability Act (HIPAA) and the Gramm-Leach-Bliley Act (GLBA). Finally, private industry may require services such as SAS 70 review, SysTrust and WebTrust reviews.

» Printed from http://www.denysys.com/solutions/solutions_iss.php