|
 Vulnerability Assessments are a vital part of risk management programs and provide valuable data for risk analysis activities.
Internal Network Assessment
An internal network assessment consists of examining the customer internal architecture with an on site inspection. It is important to remember that all network environments differ in layout, scope and complexity, Leading Change, Inc. could include any or all of the following steps in an assessment:
- Review firewall rule sets and router configurations
- Identify open ports and associated services on network devices, servers and desktops
- Identify operating system and server vulnerabilities.
- Review patch levels on internal network devices, servers and desktops
- Scan for Trojans within the internal environment
- Examine anti-virus implementation and procedures
- Review remote management process and procedures
- Security review of network topology and server placement in DMZ, intranets and extranets
- Review file sharing information and access (e.g., NFS and SMB/CIFS shares)
Network Perimeter Assessment
Return to SecureIT
 |
