Network Security

Obtain an accurate understanding of your security and risk posture, while ensuring compliance with industry regulators and information security best practices.

Network Security Review Services Overview

Network Security Configuration Review

A review of network configurations will provide more in-depth, detailed information on the specifics for each network device than a network architecture review or penetration test can alone. During this phase, Praetorian security consultants will assess the configuration of your organization's network devices and identify weaknesses in how routers and switches are configured throughout the network.

Server Host Security Review

Server host reviews are critical because they allow us to identify vulnerabilities that cannot be detected through network testing. This includes issues such as permissive file access controls, unnecessary accounts, unnecessary local services enabled, improper logging settings, and insecure server management practices. We analyze the operating system and selected applications for security issues in your company's operational environments. Praetorian also checks administrative and technical controls, identifies weaknesses and gaps as compared to best practices, and recommends specific countermeasures.

Firewall Security Review

Through Praetorian's firewall security examination, your organization can verify the soundness of your security architecture and determine how well it is aligned with various industry standard requirements such as PCI DSS, ISO/IEC 27001. During a firewall review, Praetorian will examine vendor specific vulnerabilities, ingress and egress access controls, logging and auditing, and system management. Firewall security reviews are important because they identify vulnerabilities that cannot normally be detected through network penetration tests and black box network assessments. Learn more about Firewall Security Reviews.

Virtualization Security Review

Because virtualization changes, adds complexity, and potentially undermines some traditional security controls, additional safeguards must be implemented in a virtual environment. While virtualization can increase efficiencies and lower cost of ownership, virtualization can simultaneously open new and unforeseen risks. As IT organizations adopt virtualization, they must understand and plan for these potential risks at both a tactical and strategic level. Praetorian's approach and experience in the virtualization space allows our clients' to leverage our subject matter expertise to ensure an appropriate level of security is achieved.

Network Security Architecture Review

The network architecture review evaluates the function, placement, and gaps of existing security controls and compare their alignment with the organization's security goals and objectives. Existing network diagrams and network documentation will be reviewed and interviews with network security analysts, network engineers, and network architects will be conducted in order to confirm documentation and answer outstanding questions.

IDS/IPS Capabilities Review

Proper detective and reactive controls are critical in identifying and stopping malicious activity. Intrusion detection systems and intrusion prevention systems have become a staple in a security organization's technology portfolio. However, companies often do not dedicate sufficient resources to manning IDS/IPS deployments and results often fall short of expectations. Praetorian's IDS/IPS review will help clients identify gaps in their reactive capabilities and ultimately strengthen their overall incident response program. Deficiencies are identified in both the technology and processes in place.

Active Directory Security Review

An active directory review identifies issues such as permissive file access controls, unnecessary accounts, unnecessary local services enabled, improper logging settings, and insecure server management practices. Given the nature of network based testing, such issues will fail to be illuminated through network scans alone. Security concerns in your operational environment are identified by analyzing the operating system and designated applications. Administrative and technical controls are checked, weaknesses and gaps are identified and compared to best practices, and finally, specific countermeasures are recommended.

VPN Security Review

Praetorian recognizes that while your VPN solution provides necessary and convenient remote access for employees, it can also be used as a mechanism for opening your internal network to attacks from anywhere on the Internet. Subsequently, Praetorian has developed a comprehensive VPN security assessment to review each aspect of your VPN solution. The review compares your current configuration against recommended best practices and identifies any areas of concern. The assessment includes remote and onsite configuration review as well as an architecture review.

Security Policy & Procedures Review

The goal of every information security program is to provide confidentiality, integrity, and availability of data. Security policies provide guidelines that must be followed to achieve information security. Procedures explicitly define how security goals will be met and provide assurance that policy will be enforced. Praetorian applies a holistic approach to the assessment of information security policies and procedures. First, we measure the ability of your existing policies and procedures to address business practices, risk tolerance, and security goals. Then we make the most effective recommendations to help your organization meet these objectives.

Methodologies for Network Security Reviews

The overall network architecture review assesses personnel, processes, and technologies currently in place to protect infrastructure assets and identifies any gaps in asset protection. Results will be measured against recommended best practices and against what is typically found at other organizations of similar function, size, and target value. Based on the findings of the assessment, Praetorian will provide tactical and strategic recommendations for those areas in need of improvement.

What You Get

Upon completion of the assessment Praetorian shall provide a single electronic report deliverable. The report will provide an analysis of the current state of the assessed security controls. The analysis will identify areas that need to be resolved in order to achieve an adequate level of security. The detailed contents of the deliverable are described below.

The report deliverable will include the following high level sections in a format suitable for management:

  1. Purpose of the engagement including project's scope and approach
  2. Positive security controls that were identified
  3. Tactical resolutions to immediately reduce risk in the environment
  4. Strategic recommendations for preventing similar issues from recurring
  5. An industry comparison based on consultancy experience and results from similar previous engagements

The report deliverable will also include the following in-depth analysis and recommendations for technical staff to understand the underlying risks and recommendations:

  1. A technical description and classification of each vulnerability
  2. Anatomy of exploitation including steps taken and proof in the form of screenshots
  3. Business or technical risk inherent in the vulnerability
  4. Vulnerability classification that describes the risk level as a function of vulnerability impact and ease of exploitation
  5. Technical description of how to mitigate the vulnerability