Related Links

Security Assessment Services

True strength is understanding your weaknesses.

Our assessment services offer clients the chance to view security weaknesses from a wide variety of angles. Beyond just reporting technical vulnerabilities, we also identify root causes and help solve strategic and systemic problems, which prevents re-occurrence of vulnerabilities.

Assessment Offerings

  •  

    Perimeter Security Assessment (PSA)

    - This is a detailed security and vulnerability analysis of the systems on the client's network as observed from the Internet, or "hacker's perspective".
  •  

    Critical Asset Security Assessment (CASA)

    - This onsite assessment focuses on vulnerabilities and security concerns associated with the client's critical network and computing assets which operate behind firewalls.
  •  

    Policies, Procedures & Practices Assessment (PPPA)

    - Illumant assesses the client's IT organization's management, documentation, and design of operations as well as conformance with best practices and any relevant regulatory requirements.
  •  

    Blind Visibility and Exposure Analysis (BVEA)

    - Without any assistance from the client, our experts identify all Internet-accessible corporate networks and information systems. The purpose of this exercise is to make the client aware of all assets which are currently visible on the Internet and therefore exposed to possible Internet threats. This assessment is typically performed prior to the PSA in order to confirm the assessment targets.
  •  

    Wireless Security Assessment (WSA)

    - The Wireless Security Assessment targets corporate and guest wireless LAN deployments to identify weaknesses in configurations, authentication protocols, and wireless architectures. We identify any of the client's rogue (or unauthorized) access points.
  •  

    LAN Security Assessment (LANSA)

    - The LAN Security Assessment targets a sample of users' desktops and laptops to gain a broader characterization of the level of security implemented within the user computing environment.
  •  

    Data Loss Prevention Assessment (DLPA)

    - DLP is an emerging class of technology products which monitor gateways, laptops and desktops to ensure that sensitive information such as credit card numbers, health care data and IP do not escape designated network boundaries or onto computer peripherals in an unprotected or unauthorized manner. Our DLPA leverages this technology to monitor corporate traffic for a predetermined length of time to detect violations of data handling policies or procedures.
  •  

    Active Directory Security Assessment (ADSA)

    - Active Directory is the lynchpin of any Microsoft computing environment, as it is responsible for account provisioning, setting security policies, controlling access to shared resources, and much more. If configured improperly, weaknesses may be created that can lead to compromise of the security of the entire network. The ADSA identifies those security vulnerabilities and suggests fixes.
  •  

    Virtualization Security Assessment (VSA)

    - Virtualization has revolutionized server utilization and data center economics. However, this novel approach comes with new risks. Traffic between virtualized servers on the same host is difficult to monitor. Malware can spread unabated. Intrusion detection may be ineffective. Our VSA examines virtual system configurations to assess whether clients are adhering to virtualization security best practices.
  •  

    Router Security Assessment (RSA)

    - Using security benchmarking tools, Illumant audits router configurations to score the configuration against best practices in router security. The result of the analysis is a list of recommendations for each configuration analyzed.
  •  

    Social Engineering Assessment (SEA)

    - Illumant assesses employee awareness of security threats, as well as corporate disclosure and incident handling policies and procedures, by trying to coax employees into disclosing passwords and other critical information using various communication vectors, such as phone and email. This exercise tests the security of client account data and other sensitive information in terms of employee adherence to corporate IT policies and procedures. Training and subsequent retesting are also available.

To request a quote or more information, click here.

Key Differentiators

Optional Internet visibility and exposure analysis

  • We can determine the extent of your Internet presence and accessibility to a targeted attack.
  • This analysis can be performed "blind" to determine the hacker's perspective.

Best-in-class blend of proprietary, commercial, and open-source scanning tools

  • Our toolkit is as comprehensive as you'll find among professional security assessors.
  • We use strict notification and escalation procedures to ensure our clients are aware of all scanning activities, which are designed to be as non-intrusive as possible.
  • As an additional safeguard, we double check that all services and ports are available after each testing session.

Manual Validation and Expert Analysis

  • Our experts spend considerable effort to manually validate the findings from the scanning tools and analyze the results.
  • Our experts confirm security holes, discard false positives, uncover vulnerabilities not detected by the scanning tools, and provide recommendations to the overall network architecture.

Reports

  • The results are always included in a professionally produced final report, which provides executive-level content and extensive technical findings.
  • The report also includes action items and specific advice for remediating vulnerabilities.