Consultancy



Penetration testing is a systematic review, determining the adequacy of security measures, identifying security deficiencies and evaluating the effectiveness of existing and forthcoming safeguards. The penetration test is a necessary part of a risk management program and provides valuable data for risk analysis activities. 

Purpose of the Penetration Testing

An average penetration test can consist of the following tasks.

To test IT infrastructure/environment for vulnerabilities and security gaps particularly in:

Desktop Configuration
Server Configuration
Hubs, switches and routers configuration
Communication links and their attached devices
Intranet and Internet access policies and procedures
Access control, Naming convention
System Auditing, i.e. login/logout checks, resource accesses, passwords, shares, file and directory level permissions, group and global level directory configurations.
Network Access (Internal and External)
Firewall and DMZ
Virus Protection and procedure of distributing the virus pattern files
 To assess day-to-day IT practices and approaches against best practices in:
           The process of granting network access
          Change control procedures 
          Operational approaches 
          Disaster avoidance/recovery planning
         Future goals 
          Security awareness in the user and IT staff communities

To measure arrangements against physical access to the:

Building
Computer rooms
Communication rooms
IT assets

Key Benefits of Penetration Testing:

You will know the real situation of your network and will be able to narrow down the weaknesses
You will be able to plan and organize effective controls.
You will be able to increase the revenue and business as other secure sites will trust you.
Your customers will be satisfied as their data will be in safe hands.
Legal and compliance authorities will be satisfied.