Network Architecture SECURITY Assessment
In the last decade, network architectures have changed from just a functional design to a secure, functional design. Security has become one the most important aspects of all new network designs implemented. A secure network design allows for greater network segmentation, more detailed access controls, better logging and monitoring, and the removal of single points of failure. The network’s infrastructure and architecture security is the foundation that all of your security is based upon. Therefore each network device must be well secured and the architecture properly designed. Many risks can be mitigated simply by implementing a secure-by-design architecture.
Foundstone network security consultants help our clients by performing detailed analyses on current network architecture and identify all vulnerabilities by using a comprehensive three-phase approach to ensure that malicious intruders do not gain access to your critical assets.
During this assessment, Foundstone network security consultants assess the security architecture of your company's infrastructure. Foundstone evaluates the current design structure of various security control mechanisms in place to determine their effectiveness and alignment with your company's security goals. Our process takes a careful look at the strengths and weaknesses in your technical security architecture. Foundstone will examine the following components:
- Key design assumptions
- Technology Inventory
- Security Administration Procedures
- Network Topology
- Network Access Controls
- Host Access Controls
- Authentication/Access Requirements
- Administrative and Maintenance Channels
- Business Resumption and Contingency Preparedness
- Technical and application architecture in place for providing customer services through web and associated channels
- Reliance on third-party systems and products
- Functional data flow (including security-control points)
The above listed components are assessed in three primary phases.
- Documentation Review
- Evaluate the current requirements, the architecture, and design for any design issues or exposures. This phase also includes a review of the policies and processes related to the network design.
- Vulnerability Scanning and Penetration Testing
- Evaluate the security of each host by doing a network device vulnerability scan and penetration test.
- Administrator Interviews
- Conduct an interview with the network administrator based upon industry best practices in infrastructure design and validate the documentation review findings, vulnerability scanning findings, and penetration testing findings.
The last step in the process is to assess how management addresses security monitoring, escalation, and follow-up procedures that provide your organization with preventative and adaptive security capabilities. This program includes assessing:
- Incident response requirements and solutions
- A clearly defined and rules-based escalation procedure for effective security incident response
The overall network architecture review includes assessing the inventory of the current security technology and processes in your organization, evaluating the critical information assets that are in your e-commerce infrastructure, and analyzing the security roles related to the infrastructure. Our process consists of interviews and documentation review. Foundstone will also use the knowledge of your infrastructure gained during network and host security testing.
Click here to view a full datasheet about this service.
Contact us to learn how our security services can help you protect your most important assets today.
