Successfully reported this slideshow.

Security Readiness Profile


Published on

We'll help reveal the vulnerabilities in your business networks by comparing them to industry best practices

Published in: Business, Technology
  • Be the first to comment

  • Be the first to like this

Security Readiness Profile

  1. 1. Security Readiness Profile An Objective View of Your Network Security
  2. 2. What is a Security Readiness Profile? A Security Readiness Profile compares your physical network, operating policies and procedures against industry standards. This reveals the vulnerable areas in your business operations that need immediate attention.
  3. 3. The First Steps <ul><li>On-site review of your network security by a technician </li></ul><ul><li>Meeting with you and your IT staff to review initial findings </li></ul><ul><li>Develop a written summary of findings, with recommendations to improve security </li></ul><ul><li>Meeting with you and your IT staff to review the summary report and recommendations </li></ul>
  4. 4. The Elements Reviewed in a Security Readiness Profile <ul><li>Data Access </li></ul><ul><li>Firewalls </li></ul><ul><li>Internet </li></ul><ul><li>Virtual Private Networks (VPN) </li></ul><ul><li>Network Routers </li></ul><ul><li>Access and Authentication </li></ul><ul><li>Virus Management </li></ul><ul><li>LAN Security </li></ul><ul><li>Backup and Contingency </li></ul><ul><li>Disaster Recovery </li></ul>
  5. 5. Section 1: Data Access <ul><li>Reviews password security practices; </li></ul><ul><li>File protection mechanisms; </li></ul><ul><li>PC/Workstation security, and; </li></ul><ul><li>Security policies for data archiving and disposal </li></ul>
  6. 6. Section 2: Firewalls <ul><li>Reviews firewall setup and redundancy; </li></ul><ul><li>Security configurations, such as packet filters and proxies; </li></ul><ul><li>Monitoring practices; and </li></ul><ul><li>In-bound and out-bound Internet security </li></ul>
  7. 7. Section 3: Internet <ul><li>Reviews Gateway architecture; </li></ul><ul><li>Internet Acceptable Use Policy (IAUP); use of Proxy Services, and; </li></ul><ul><li>Monitoring policies and procedures; </li></ul><ul><li>Provides recommendations to increase Internet security to prevent intrusion. </li></ul>
  8. 8. Section 4: Virtual Private Networks (VPN) <ul><li>Reviews current VPN security policy and enforcement practices </li></ul><ul><li>Reviews VPN authentication mechanisms and monitoring </li></ul><ul><li>Provides recommendations to maintain fast, reliable, secure communications at all times </li></ul>
  9. 9. Section 5: Network Routers <ul><li>Reviews physical security of Network routers and preventative maintenance practices </li></ul><ul><li>Reviews password management, interactive access controls, management services and logging </li></ul><ul><li>Provides recommendations to prevent catastrophic failure of your network </li></ul>
  10. 10. Section 6: Access & Authentication <ul><li>Reviews PC/Workstation security; </li></ul><ul><li>User access controls; </li></ul><ul><li>OS and software update policies; </li></ul><ul><li>Logging and data collection mechanisms, and; </li></ul><ul><li>Backup configurations </li></ul>
  11. 11. Section 7: Virus Management <ul><li>Reviews virus detection mechanisms; </li></ul><ul><li>Anti-Virus software update schedules; </li></ul><ul><li>Policies regarding removable media devices, and; </li></ul><ul><li>Procedures for investigating, reporting and documenting virus incidents </li></ul>
  12. 12. Section 8: LAN Security <ul><li>Reviews your organization’s LAN security and policies </li></ul><ul><li>Defines our proven method to Harden/Secure, Prepare, Detect and Respond to LAN security issues before they become a problem </li></ul>
  13. 13. Section 9: Backup & Contingency <ul><li>Reviews the security of your backup systems, capacity and strategies </li></ul><ul><li>Reviews your protection mechanisms for backup and verification </li></ul><ul><li>Provides recommendations to develop a business continuity plan </li></ul>
  14. 14. Section 10: Disaster Recovery <ul><li>An assessment of your vulnerabilities to both natural and man-made disasters </li></ul><ul><li>Determines whether your Disaster plan can effectively meet your company’s projected needs </li></ul><ul><li>Provides recommendations to update and test your Disaster plan </li></ul>
  15. 15. The Final Steps <ul><li>Meeting with you and your IT staff to review the SRP report and our recommendations </li></ul><ul><li>Prioritize actions to provide an efficient, reliable and secure business network </li></ul><ul><li>Determine the amount of assistance required from our technical team to make it happen </li></ul>
  16. 16. About <ul><li>Progressive Data Systems, Inc. was incorporated in 1990 by Bill Correll. For the next five years, continued to expand and serviced almost 600 clients. </li></ul><ul><li>Between 1998 and 2001, the company changed focus to become an Internet service provider, and concentrated on providing computer networking consulting and service to medium-sized business, town offices, and social service agencies. </li></ul><ul><li>Since 2003, has concentrated on finding ways to bring more value to their network clients by continuing to develop expertise in all areas of Internet and network security consulting. </li></ul>