A Security Assessment allows you to identify, classify, and prioritise those technical vulnerabilities within your business’ systems, or security control gaps inherent in your business process’ and procedures.
The Security Assessment will also allow you to gain visibility of those risks which exist externally and internally to your organisation through the identification of those vulnerabilities.
Aspirenet Ltd. offer four types of Security Assessment which can be carried out through authenticated or unauthenticated means.
External Vulnerability Assessment
This assessment is carried out from outside your organisation as if a malicious individual is looking for a way into your business’ network or systems.
Using specialised industry tools, scans are carried out against your internet facing points of presence to identify weaknesses and vulnerabilities that may allow an unauthorised person access to your network or website.
Internal Vulnerability Assessment
An internal vulnerability assessment is carried out from within your network and gives you an idea of areas within your network which have been left exposed.
These scans also allow you to identify out-of-date operating systems and software which, if left unchecked, could potentially allow unauthorised access to sensitive data or intellectual property.
These exposed areas and out-of-date operating systems or software, could be exploited by either a dissatisfied employee or by an attacker who has gained access to your network and is now looking gain further access within your network.
Business Security Assessment
This assessment is carried out by conducting a gap analysis of your business’ security policies and procedures to identify areas for improvement in order that you can align your security posture with industry best practice.
Gaps in your business continuity plan, asset identification and classification, protective monitoring, and risk management, are example of areas which will be assessed.
Combined Holistic Security Assessment
This option combines all three security assessments to give your business a holistic view of your organisation’s vulnerabilities.
Combining the assessments covering the technical, people and processes of your business will give a full picture of your exposure to vulnerabilities and let you build a comprehensive cybersecurity programme of work, top to bottom.
Performing a Cyber Security Assessment will provide you and your business an understanding of the exposure you have to potential attack vectors, weaknesses, and entry points. Once these are identified, your organisation can establish its priorities to address those vulnerabilities and risks discovered through our Cyber Security Assessment.
Our Cyber Security Assessment will be carried out by our experienced consultants utilising a combination of manual and automated systems covering those technical, procedural, physical and personnel areas within your business.
Our Cyber Security Assessment offering is not a ‘one size fits all’ approach. Each assessment is tailored specifically to suit your business and your requirements, ensuring that those vulnerabilities and risks identified are not generic, but apply directly to your organisation.