Network Analysis
Network Analysis has emerged as a key challenge for organizations in all industries of all sizes. Network Analysis can be very painful for organizations, but it does not have to be. By managing information in a manner that anticipates Network analysis requirements, organizations can reduce the high costs and inconvenience normally associated with network analysis. In addition to developing policies and procedures for addressing preservation, organizations should investigate technology solutions that will help to ensure that information can be stored and managed in a way that ensures its integrity, security, and long-term accessibility.  |
Vulnerability Assessment
Vulnerability assessment is the process of identifying and quantifying vulnerabilities in a system. The system being studied could be a physical facility like a nuclear power plant, a computer system, or a larger system (for example the communications infrastructure or water infrastructure of a region). Vulnerability assessment has many things in common with risk assessment.
|
Patch Management
A few years ago, patch management was barely a blip on the radar screens of most security and IT personnel. 'Install and forget' was a fairly common practice; once deployed, many systems were infrequently or never updated. Obviously, for a number of reasons, this approach is no longer an option. The rise of widespread worms and malicious code targeting known vulnerabilities on unpatched systems, and the resultant downtime and expense they bring, is probably the biggest reason so many organizations are focusing on patch management. Along with these threats, increasing concern around governance and regulatory compliance (e.g. HIPAA, Sarbanes-Oxley) has pushed enterprises to gain better control and oversight of their information assets. Add in increasingly interconnected partners and customers and the rise of broadband connections and remote workers, and you have the perfect storm that has thrust patch management to the forefront of many organizations' list of security priorities.
|
Data Analysis
Data analysis is the act of transforming data with the aim of extracting useful information and facilitating conclusions. Depending on the type of data and the question, this might include application of statistical methods, curve fitting, selecting or discarding certain subsets based on specific criteria, or other techniques.
|
Data Assurance
The ability to detect system wide changes is fundamental to enterprise network security. There are many products that will help you manage these threats. Detecting changes to the directory structure enables immediate identification of any unauthorized files including viruses, trojans, malware and spyware before traditional anti-virus tools. It is important to detect all files and folders that have been added or removed, files and folders that have been moved to the recycle bin and files and folders that have been created then moved to the recycle bin between database checks. Alternate Data Streams are a favorite hiding place for spyware and key loggers because they cannot be seen with Explorer. In addition, subtle changes to the registry which normally go unnoticed can seriously impact network security.
|
Policy & Enforcement
Traditional security processes are no longer sufficient to prevent inappropriate or unintended disclosures of confidential content, such as external communications with partners, executive communications, human resource information, and classified data. To avoid this risk, enterprises and government agencies apply and centrally enforce data policies that restrict access to sensitive information.
|
