Identifying Security Risks and Vulnerabilities

An important part of any security strategy is to identify the current level of exposure and risk a company faces and to understand how to monitor, detect and respond to the growing number of vulnerabilities and threats to enterprise information. An adaptive security solution enables productivity by allowing companies to focus on core business functions rather than security risks. As part of our planning and assessment services, Akibia offers comprehensive Vulnerability Assessments and Security Policy Development services.

Evaluating Overall Network Health and Performance

As more organizations rely on their network and the Internet for critical business functions, ensuring a highly available and efficient network is increasingly important. Akibia's Network Audit services allow companies to proactively monitor and evaluate their overall network health and performance, plan for future growth, and ensure their network infrastructure is fully optimized.

To identify the security vulnerabilities that may exist within a company's infrastructure, a Vulnerability Assessment should be carried out regularly. Akibia offers several Vulnerability Assessments, including:

• Internet Risk Assessment – Identifies vulnerabilities in a company's Internet infrastructure and any potential risks through their Internet connection.
• Enterprise Vulnerability Assessment – Audits an enterprise's security infrastructure and identifies potential areas of exposure in their servers, network topology and security policies. It includes a thorough analysis of the company's firewalls, routers, switches and operating systems.
• Malicious Threat Assessment – Helps companies understand the threats that exist at their Internet ingress/egress point. By strategically placing a network intrusion detection sensor at Internet access points, Akibia can monitor and log the occurrence of probes and attacks against the company's network, as well threats emanating from within the network.
• Regulatory Compliance Assessment – Using a regulation-specific information gathering and assessment methodology, Akibia works with each client to identify vulnerabilities and review security policies to assure that best practices are in place as required by regulations such as Sarbanes-Oxley, GLBA, HIPAA and ISO17799.
• Payment Card Industry Data Security Assessment – Helps clients understand their risk exposure related to the exacting requirements of the Payment Card Industry (PCI) Data Security Standard. Akibia is one of only 40 companies qualified to deliver PCI On-site Assessments. Akibia’s PCI audit services are performed by experienced, certified security specialists, who work with our clients to ensure they understand their risk exposure as well as effective mitigation measures and strategies so that they can be successful in complying with the standards.

Following each assessment, Akibia's senior security engineers work with our customer's team to build a strategy to eliminate high priority security weaknesses and vulnerabilities.

In order to take advantage of today's sophisticated security solutions it is important to develop sound corporate guidelines and policies. Without such policies in place, there is no assurance the systems a company has invested in to protect their corporate data will work as intended. Further, in today's corporate world, information security policies are a required component of demonstrating "due diligence" and "due care."

Whether a company has policies that need to be reviewed and updated, or developed from scratch, Akibia can help. Our services include policy assessment, development and dissemination as well as awareness training to ensure that security systems are being fully leveraged in accordance with corporate guidlelines and security best practices.

Akibia's Network Assessment services allow our clients to gain an-depth understanding of their network's behavior and general operating condition, and to isolate potential problems and inefficiencies so they can ultimately make more informed decisions for improving network performance and reliability.