Systems and Architecture Review

The infrastructure, servers, and devices deployed throughout an organization protect the confidentiality, integrity, and availability of sensitive information assets.   The manner in which these systems are deployed plays a key role in information security.   Well planned and standardized hardening procedures and standards, patch management, file system access control, and user access control are several of the areas that are reviewed as part of system configuration security.  

Solution At-a-Glance:

HALOCK will review of the overall network infrastructure to determine if the environment is properly designed to protect against internal and external threats. To improve both the effectiveness of its security infrastructure and the efficiency of its security operations, the Systems and Architecture Review is an evaluation of how processes and control architectures are implemented and identifies areas for improvement within the infrastructure. The goal of this evaluation is to extract additional value from existing security controls that might be re-positioned or re-configured to improve reliability, usability or interoperability with other systems.   The review begins with interactive discussion with the individuals responsible for the design, implementation, and support of the environment. Additional review of available documentation, network topology, and hands on review of the configuration of key hosts and network devices throughout the environment is performed.  

Non-Disruptive - This offering does not utilize a vulnerability scan or penetration test to identify specific security problems.  It addresses systemic design issues in your network by comparing it against recommended best practices.    
  • Detailed planning and coordination of interviews and whiteboard sessions
  • Interactive review of network design, systems architecture, access control, data protection, event monitoring, availability, and operations
  • Manual, hands on review of the configuration of key components of the environment, such as firewalls, servers, and client workstation images
  • Documentation of Findings
  • Interactive presentation and review of recommended  changes or improvements to the environment

Ethical Hacking Training:

In-depth, hands-on, ethical hacking training. Learn how to find and exploit vulnerabilities in systems and applications, and the corresponding methods for preventing such exploits.