Security Audits

Security Audits Security is critical to modern business success. Rapidly evolving computer and network technology bring the potential for widespread information malice. Without proper analysis and protection, a global corporate infrastructure could be completely destroyed by a single user with limited resources.

Protection from a potential disaster requires:

• Up-to-date detailed information security policy
• Implementation of technical security mechanisms and standards
• Regular proactive expert assessment
• End user awareness and training
• Proactive defense and monitoring capabilities
• Proper incident handling and reporting procedures

Purpose
The e-Zest audit proactively identifies weaknesses in technical and administrative information security posture in relation to the business needs and operational requirements.

Scope
e-Zest will determine the business critical systems for your organization and the relevant risks. We will then analyze and document your network architecture with particular attention to networks directly exposed to the Internet. These may include:

• DMZ areas
• Wireless access points
• VPN gateways
• Remote access systems
• External routers
• Email systems

Deliverables
Clients receive a report that categorizes vulnerabilities by level of severity and provides recommendations for patching, design or redesign and implementation.

Recommendations
To expose new vulnerabilities that arise from changes in system configuration and network growth, e-Zest highly recommends that an information security audit be included with regular supplemental audits. e-Zest offers a Quarterly Assessment and Audit Plan to meet this need.