The Security Assessment will provide your organization with the broadest insights of any IT assessment module.
Your IT Security Assessment will consist of the following elements:
- Security Risk Report – This executive-level report includes a proprietary Security Risk Score along with summary charts, graphs and an explanation of the risks found in the security scans.
- Security Policy Assessment Report – A detailed review of the security policies that are in place on both a domain wide and local machine basis.
- Share Permission Report by Computer – Comprehensive lists of all network “shares” by computer, detailing which users and groups have access to which devices and files, and what level of access they have.
- Security Management Plan – This report will help prioritize issues based on the issue’s risk score. A listing of all security related risks are provided along with recommended actions.
- Share Permission Report by User – Organizes permissions by user, showing all shared computers and files to which they have access.
- Outbound Security Report – Highlights deviation from industry standards compared to outbound port and protocol accessibility, lists available wireless networks as part of a wireless security survey, and provides information on Internet content accessibility.
- User Behavior Analysis Report – Shows all logins, successful and failure, by user. Report allows you to find service accounts which are not properly configured (and thus failing to login) as well as users who may be attempting (and possibly succeeding) in accessing resources (computers) which they should not be.
- Login Failures by Computer Report – Same data as User Behavior but inverted to show you by computer. Quite useful, in particular, for looking at a commonly accessed machines (file server, domain controller, etc.) – or a particularly sensitive machine for failed login attempts. An example would be CEO’s laptop – or the accounting computer where you want to be extra diligent in checking for users trying to get in.
- Login History by Computer Report – Report identifies users who have succeeded in logging in to another machine. Great for auditing/logging purposes to know of all attempts.
- External Vulnerabilities Summary Report – This report provides a priority ordered listing of issues by CVSS that allows technicians to prioritize the issues they are working on. It provides an extremely compact view of all issues allow a quick survey of the various issues that were detected in an environment.
- External Vulnerability Scan Detail Report – A comprehensive output including security holes and warnings, informational items that can help make better network security decisions, plus a full NMap Scan which checks all 65,535 ports and reports which are open. This is an essential item for many standard security compliance reports.
- External Vulnerability Scan Detail by Issue Report – A more compact version of the External Vulnerability Scan Detail report that is organized by issues. Devices that are affected are listed within an issue. This report is useful for technicians that are looking to resolve issues, rather than performing remediation on a particular system.
- Anomalous User Login Activity – Methodically analyze login history from the security event logs. The report uses mathematical modeling and proprietary pattern recognition to highlight potential unauthorized users who log into machines they normally do not access and at times they normally do not log in. This report delivers a security professional focus and pinpoints a manageable set of logins to investigate. The alternative is a time-consuming, manual spot check that often misses the mark and is far less reliable.
- Data Breach Liability Report – Identifies specific and detailed instances of personal identifiable information (PII) and cardholder data throughout a computer network that could be the target of hackers and malicious insiders. It also calculates the potential monetary liability and exposure based upon industry published research.
- Consolidated Security Report Card – The Computer Security Report Card assesses individual computers at a high level based on various security criteria. Devices discovered on the network are assigned an overall score, as well as a specific score for each of the assessment categories detailed in the report card. The scores are represented as color-coded letter grades (‘A’ through ‘F’). The report card provides a relative measure as to how well a computer complies with security best practices.