• Embed Doc
  • Copy Link
  • Readcast
  • Collections
  • CommentGo Back
Download
 
Pricing:
Pricing varies based on thesize, complexity, and depth of testing as well as the type of system reviewed
Each system reviewed typi-cally ranges from $3,200 to$6,400
Pricing is adjusted based onthe number and type of plat-forms installed on the operat-ing system (such as Oracle,Exchange, SQL, IIS, etc)
The servers and client workstations deployed throughout an organization protect theconfidentiality, integrity, and availability of sensitive information assets.The manner in which these systems are deployed play a key role in information security. Wellplanned and standardized hardening procedures and standards, patch management, file systemaccess control, and user access control are several of the areas that are reviewed as part of systemconfiguration security.Halock will evaluate the configurations of key client and server systems to ensure properhardening and security configurations. Each system is evaluated using a combination of softwaretools and manual hands on review techniques, aimed at identifying security risks connected withthe configuration of the operating system and related services.
Understanding each users’ access, whether or
not the have the minimal access required toperform their job duties, and if theconfiguration of the security mechanisms of thesystem are reviewed to ensure the controlsenforce appropriate access.
Solution OverviewProfessional Services Included:
Review of system documentation
Interview key resources responsible for servermanagement
Evaluate OS versions and patch levels
Review system logging and monitoring con-trols
Examine running services and associatedconfigurations
Review account policies and evaluate userrights
Check file system and registry security 
Review the configuration and enforcementof system-defined security policies (i.e.local security policies and group security policies in the case of Windows servers)
Identify system level remote access proto-cols and review associated configurations
Review the security of the primary platforminstalled, such as IIS or Exchange
Identify system level remote access proto-cols and review associated configurations
Review the security of remote access, wire-less, and end user security 
System Hardening Review
Solution At-a-Glance:
Evaluate access control andensure principles of leastprivilege are utilized
Evaluate file system securityand permissions
Ensure system configurationadequately protects informa-tion assets and does notintroduce vulnerabilities intothe environment
Test the operational effec-tiveness of security policies,procedures, and standards
Verify deployed systemscomply with security require-ments as well as internallydefined corporate standards
Insure access and user activi-ties are adequately moni-tored, controlled, and limitedto the least privileges neces-sary
847.221.0200 halock.com
 
1834 Walden Office Square, Suite 150 * Schaumburg, IL 60173 * 847.221.0200 * www.halock.com
 
Assessment & Compliance Services Division
of 00

Leave a Comment

You must be to leave a comment.
Submit
Characters: ...
You must be to leave a comment.
Submit
Characters: ...