With over 10 years experience testing internal and external network security. Security Compass offers a broad range of network security consulting services. These services include:
Network Infrastructure Review
This holistic review provides a realistic view of a network's security posture by testing any combination of Internet, Intranet, Extranet, and Wireless systems. Assessments can simulate attacks from a variety of sources - a disgruntled ex-employee, a malicious insider, or an intruder without knowledge of the network. Security Compass identifies existing vulnerabilities - both system specific and architectural - and recommends countermeasures for all identified vulnerabilities, mitigating the risk to the system's confidentiality, integrity, and availability.
Internet and Intranet Security Testing
Despite strong infrastructure hardening processes, devices often go un-patched or mis-configured due to the size of networks. Vulnerabilities in routers, firewalls, DNS, web, and database servers, and other systems are often taken advantage of by external attackers to gain access to the internal network of an organization. Security Compass identifies and tests potential points of attack after gathering background information by enumerating domains and identifying network blocks registered to the company. These attack vectors are first verified then enumerated to look for available live hosts, port, and services.
Extranet Security Testing
Many organizations trust their business partners. Attackers often break into other organizations using this trust relationship. Extranet security testing attempts to find and exploit vulnerabilities in Extranets for suppliers, customers, and other business partners.
Host Diagnostic Reivew
Host Security Assessments review critical servers - the backbone of the network and eCommerce environment. These comprehensive assessments analyze the administrative and technical controls specific to individual operating environments. Critical hosts populate every network, including web and eCommerce servers, and mail and database servers. Security related vulnerabilities create the potential for real damages - from lost revenue to legal liability to eroded consumer confidence. Leverage Security Compass to ensure your hosts are protected.
Wireless Review
In addition to holistic penetration testing, Security Compass also offers specialized wireless penetration testing. Using the latest tools and techniques, our team discovers your wireless networks. Many security vulnerabilities are exposed through wireless networks that use industry standard protocols such as 802.11b. We test the effectiveness of security protocols such as WEP, WPA, LEAP and PEAP.
Firewall Diagnostic Review
Firewall diagnostic reviews focus on the configuration, rules, and patch management of your organization's firewalls. Firewalls are the first line of defence against a large class of attacks - exposures in your firewall pose a significant risk to your information assets. Security Compass has extensive experience with all major vendors and can assist you in ensuring optimal security from your firewall devices.
VPN Testing
Virtual Private Networks transport some of your organization's most important data across the Internet. A breach in confidentiality could be disastrous. Security Compass tests the configuration of your VPN for vulnerabilities to ensure that this critical communications channel is not open to known exploits.