Critical Infrastructure Protection Pty Ltd
|
|
|
Your corporate network and your e-mail and web systems are part of your critical business infrastructure. They allow your organization to operate and help present your organization to the world. Unfortunately the world is a hostile place, particularly on the Internet, and your network security is your first line of defense against cyber attack. Lack of security can be expensive in terms of both reputation and cash. CIP provides a range of IT security services using its own personnel and the skills of its Alliance Partners. Services offered include: Network DesignGood design is the first defense against attack. CIP can help you understand your network requirements and help design a secure network that meets your needs. If you already have a network in place CIP can conduct a design review and recommend improvements for enhances security, reliability and survivability. Secure E-Mail ConfigurationWith the advent of high-speed domestic and small business access, e-mail has perhaps become an even more critical part of a corporation than a corporate network. Sadly e-mail systems are difficult to install and configure and frustratingly difficult to secure. The net result is that most commercial e-mail is sent in clear text and is open to interception. The recent growth in SPAM has also seen the proliferation of systems that can create “spoof e-mail” purporting to be from one person but actually originating from another. The solution to the problems is encryption and/or digital signature of e-mail. Unfortunately, setting up common e-mail packaged to use encryption and a digital signature is surprisingly difficult. CIP can help you design and configure your e-mail system to effectively use both encryption and digital signatures. We can also help with providing secure remote access to corporate e-mail for traveling staff. Network Penetration TestingA Network Penetration Test is an active test of a network’s security. The test can be conducted from inside or outside a corporation’s network. The aim of the test is to identify and document vulnerabilities so they can be fixed. Testing should be part of a business continuity strategy. Testing can also be undertaken as part of a quality process or certification process. CIP provides a Network Penetration Testing service. Our preferred method of operation is a White-Box test where we test with full knowledge of the inside of the network. We believe this leads to the best overall network security outcomes. Our approach used the “Open Source Security Testing Methodology Manual” and a range of commercial and ‘hacker’ tools to test network security against a company’s security policy. We can also provide policy advice where necessary. Network Intrusion DetectionWith the constant evolution of software comes the constant increase in the number of security exploitation possible to a company network. Intrusion Detection watched your network from the inside and looks for anomalous behavior indicating that your network security has been breached. CIP provides a range of intrusion detection capabilities and can respond to security events to assist a company’s system administration staff cope. Network RemediationRemediation is the process of making things right. This can be removing network vulnerabilities in response to a penetration test or putting the system back together after a security event. CIP can provide expert staff to cope with the surge in system administration activity post event. We can also provide support and advise on business continuity planning. More InformationFor more information on our Network Services and a confidential discussion on your concerns and requirements please contact us. |
Copyright © 2005-2009
Critical Infrastructure Protection Pty Ltd
|