Security Audits and other assessments are practices that could best be filed under the "necessary evil" category. While no business owner, executive or IT manager relishes the thought of enduring an end-to-end security examination, it's generally understood that an audit is the best and only way to fully understand all of your business's security, technologies, and practices as they exist today. In addition, audits and assessments provide a method to evaluate whether the IT environment is operating in accordance with your company's specifications and requirements.

• Security Audit
• Disaster Recovery / Redundancy Audit
• General Network Assessment
• Customizable Assessment

A security audit is a specified process designed to assess the security risks facing a business and the controls or countermeasures adopted by the business to mitigate those risks. It is typically a human process, managed by a team of “auditors” with technical and business knowledge of the company’s information technology assets and business processes. As part of any audit, these teams will interview key personnel, conduct vulnerability assessments, catalog existing security policies and controls, and examine IT assets covered by the scope of the audit. In most cases, they rely heavily on technology tools to perform the audit.

Often, security audits are best understood by focusing on the specific questions they are designed to answer. For example:

• How difficult are passwords to crack?
• Do network assets have access control lists?
• Do access logs exist that record who accesses what data?
• Are personal computers regularly scanned for adware or malware?
• Who has access to backed-up media in the organization?

These examples are just a small sample of the questions that we will answer during our audit of your network.

Have Questions?

Need more information about our services? Please use the button below to contact us: