Security Policy Assessment

A security policy assessment is the evaluation of your organization’s current security policies. Our specialists will assist with the improvement of policies or create policies for your organization. Some policies we can assist with include: Acceptable Use Policy (AUP), Incident Response, Disaster Recovery, Remote Access, BYOD, and more.

Our Methodolody

All testing performed under security policy assessment are based on the NIST SP 800 - 115 Technical Guide to Information Security Testing and Assessment, OWASP testing Guide (v4) plus other customized testing frameworks.

PLANNING

Customer goals are gathered and rules of engagement obtained.

DISCOVERY

Perform scanning and enumeration to identify potential vulnerabilities, weak areas and exploit.

REPORTING

Document all found vulnerabilities and exploits, failed attempts, company strengths and weaknesses.

Thorough Testing

Items reviewed during policy assessment include but not limited to:

Access Control Policy
Disaster Recovery Plan
Password Policy
Remote Access Policy
Acceptance Use Policy
Incident Response Plan
Bring Your Own Device (BYOD) Policy
Other policies and plans depends on specific customer content and footprint.

Security Policy Assessment

Our Methodolody

Thorough Testing

See How we can Secure Your Digital Assets