Security Assessments
In the last few years, security has played a more important role in IT. Corasen can provide industry standard advice and best practices on
how you can get the most out of your infrastructure in the most secure manner possible.
We provide security services including:
Vulnerability Assessment
This is an exhaustive methodology that ferrets out the weaknesses and deficiencies, from a security standpoint, in any given system.
Organizations across the world have to be sure that their systems will run continuously. Vulnerability Assessments are a critical tool in ensuring this.
The idea is to minimize or, better still, eliminate the chance of a security breach. Organizations feel a particular need in this regard when they are
shifting their operations or launching new systems. Our assessment criteria is comprehensive, our reports easy to use, our recommendations practical,
and our data-collection and analysis procedures fast and reliable.
 |
 |
Enterprise Security Audit
An Enterprise Security Audit involves a review of all processes and practices followed by an organization looking to ensure enterprise-wide security.
Additionally, there will be a technical audit conducted across all the locations and devices in the enterprise. Based on the spread and criticality of the
devices being audited, there is a judicious mix of remote and onsite audits. The technical audit uses industry-standard tools as well as custom-developed tools.
Penetration Testing
Penetration testing is the testing of networks and their components for security weaknesses. This test can be done with no knowledge of the network,
or as authorized users having restricted knowledge of the network. The test is conducted remotely via the Internet on the IP address, the URL specified by the client,
or at the client site (for internal penetration testing).
Light perimeter test — Testing the strength of the perimeter from a remote location.
Full perimeter test — Verifying the security of the perimeter, the servers in the DMZ with remote exploitation of DMZ and accessible internal systems.
Internal test — The 'trusted insider' test, launched from inside the client's network, with internal exploitation.
|
Code Security Review
A Code Security Review assignment involves the rigorous testing of the existing application source code for programming and structural faults that may lead to
possible security weaknesses. It requires access to the source code of the sections of the application, or the complete application that is being tested.
The testing effort is estimated from the complexity of the application and the quantity of code that needs to be reviewed.
Application Security Assessment
Application Security Assessment is the testing of applications remotely over the Internet for security holes, or the testing of applications at the customer site on
a staging server with higher levels of access to the application architecture and documentation.
We offer this service in two modes:
Contact Us to get a free consultation.
|
