Security Audit
A sampling of security audit tasks include:
- A review of your business' current Information Technology policies
- A review of policies covered under any necessary regulatory compliance items
- A vulnerability scan on a subset of servers and a representative subset of the workstations (and other network equipment as necessary)
- A review of security practices particularly addressing the areas below:
- Disaster Recovery
- Business Continuity
- Availability of critical systems
- An external penetration test
- Password auditing
By request, D&E can also provide intentional and planned social engineering tactics. This takes into consideration what security policies are in currently in place and what gaps there may be within your organization with respect to enforcement.
- Social engineering is a way of influencing or taking advantage of a company user (unknowingly) in order to obtain either confidential information or physical access to an item or location. (Examples could be providing a password to a person posing as a help desk agent over the phone, or allowing an unknown person to ‘tailgate’ through a secure entrance due to a forgotten access card)
After the Assessment
Documentation of the findings will be provided to you, prioritized by risks that would have the most negative impact on your organization. A D&E security expert will schedule a session with your team to fully review our findings in the initial assessment, answer any questions, and make recommendations to remediate issues that were identified.
New vulnerabilities arise every day which can place your business at risk. D&E can help you stay on top of security initiatives through specific Security Program Implementation projects or ongoing Managed Network Support.
For more information on D&E's Security Audit, call 1-877-4DE-TODAY or e-mail us