Technology Assessments
Risk Assessments and Compliance Testing
The Best Business Leaders identify risks before those risks become big problems.
So, we built two types of IT Assessments to help Business Leaders Identify their Technology Risk…
Assessment: Basic
Process Includes:
System Scans of Your Company Technology: Specifically, Cyber Security, Network, MS Exchange, and SQL Server.
Together with Interviews of Key Technology Personnel.
The Goal:
Identify Security and Technology Risks. Likewise, Understand IT Costs.
What You Get:
Executive Overview and Summary Reports for Company Ownership and Management.
Even More: Detailed Health, Client & Security Risk, and Network Vulnerabilities Reports for IT Team Members!
Assessment: Advanced
Process Includes:
Everything in Assessment Basic, together with HIPAA and/or PCI Compliance Testing.
The Goal:
Everything in Assessment Basic, coupled with HIPAA and/or PCI Assessment of Compliance.
What You Get:
Everything in Assessment Basic. Additionally, Gap Discovery Report from HIPAA and/or PCI Compliance Testing.
5 Areas Our Technology Risk Assessment Covers
Hardware
Servers, workstations, printers, non-AD devices (that is to say: switches, routers, etc.)
Old computers still joined to the domain that have not been removed
Software
Systems with missing patches, service packs, or, especially, security updates
Local accounts (per-system) with weak or insecure passwords
Moreover, systems missing anti-virus/anti-spyware or firewall misconfiguration
Configuration
Security policy inconsistency across network servers/computers
Outbound system access that should be blocked
Also, lack of content filtering (social media, entertainment, pornography, illegal downloads)
Accessibility
Misconfiguration of user access to network shares
Detailed breakdown of AD security group membership
Security Risks
Old user accounts which still have access and have not been properly disabled
Internal systems with open ports that pose a potential security risk
Finally, External issues that put your network at risk of business disruption or data loss
Lighthouse Technology Services
The Place for Technology Talent