Security Assessments

A Security Vulnerability Assessment is the process of identifying, quantifying, and prioritizing the vulnerabilities in an information technology system. Vulnerability assessments are designed to provide a high-level test and analysis of a system using a predefined set of evaluation criteria. For example a vulnerability assessment may be conducted to validate the specific requirements related to managing cardholder data as required in the PCI DSS. This assessment is narrower in scope and less comprehensive than a full-blown penetration test. Vulnerability assessments are often used as part of an initial risk assessment.

A Security Vulnerability Assessment typically includes the following steps:

1. Identifying information technology elements
2. Classifying elements and prioritizing based on relative risk
3. Identifying the vulnerabilities or potential threats to each element
4. Mitigating or eliminating vulnerabilities

How TrustNet Helps

Security Vulnerability Assessments may be conducted from both internal and external perspectives. The assessment includes the use of automated network scanning tools as well as subject matter expert analysis.

• Affordable - designed and priced to meet your specific needs no matter how small or large your requirements
• Comprehensive - provides a 360 degree view of risks including people, processes, and technology both internally and externally
• Fast – using a combination of automated tools and investigative consulting we provide rapid results
• Effective – we provide actionable data and recommendations with detailed step-by-step remediation guidance
• Proactive - identifies potential issues in IT infrastructure by locating vulnerabilities and weaknesses before they impact the business