The golden rule for a successful project is to have a clear picture of what you are working with. Regardless of whether you are managing, redesigning or securing your network infrastructure, it is impossible to do the job properly until you are absolutely sure of what equipment and services are running already. Network auditing plays a key role in many areas of successful network management, including licensing and service provisioning, as well as providing the basic information for threat assessment and risk analysis prior to new service deployment.
ASC have extensive experience in auditing and assessing network and security infrastructure. Our consultants will assist in identifying the level of auditing required, whether that is over part or all of your networking infrastructure. Plans for the audit will be drawn up and scheduled, from physical hardware and current topology design, through specialist traffic flow analysis right up to and including detailed threat analysis and attack-tree review.
All of our auditing services result in detailed reports including network diagrams as appropriate. The resulting reports may be used as independent corroboration of work done by incumbent contractors or for the purpose of satisfying insurers, shareholders or internal auditors.
Where necessary (or requested) our consultants will conduct penetration testing against specific hosts, however we believe that this kind of testing has a limited value on its own and as such do not offer pure penetration-testing audits. For more information on this policy please feel free to contact us.
Whether you simply need to formalise the current state of your network design, review your infrastructure before embarking on anew roll-outs, or are expecting to be audited for compliance with PCI-DSS or Sarbanes-Oxley (see setails our specific compliance auditing service here), you should speak to us to discuss your options.