Risk Assessments and Compliance Testing
The Best Business Leaders identify risks before those risks become big problems.
So, we built two types of IT Assessments to help Business Leaders Identify their Technology Risk…
Together with Interviews of Key Technology Personnel.
Identify Security and Technology Risks. Likewise, Understand IT Costs.
What You Get:
Executive Overview and Summary Reports for Company Ownership and Management.
Even More: Detailed Health, Client & Security Risk, and Network Vulnerabilities Reports for IT Team Members!
Everything in Assessment Basic, together with HIPAA and/or PCI Compliance Testing.
Everything in Assessment Basic, coupled with HIPAA and/or PCI Assessment of Compliance.
What You Get:
Everything in Assessment Basic. Additionally, Gap Discovery Report from HIPAA and/or PCI Compliance Testing.
5 Areas Our Technology Risk Assessment Covers
- Servers, workstations, printers, non-AD devices (that is to say: switches, routers, etc.)
- Old computers still joined to the domain that have not been removed
- Systems with missing patches, service packs, or, especially, security updates
- Local accounts (per-system) with weak or insecure passwords
- Moreover, systems missing anti-virus/anti-spyware or firewall misconfiguration
- Security policy inconsistency across network servers/computers
- Outbound system access that should be blocked
- Also, lack of content filtering (social media, entertainment, pornography, illegal downloads)
- Misconfiguration of user access to network shares
- Detailed breakdown of AD security group membership
- Old user accounts which still have access and have not been properly disabled
- Internal systems with open ports that pose a potential security risk
- Finally, External issues that put your network at risk of business disruption or data loss
Lighthouse Technology Services