Frontline Sentinel: Improving IT Security with Vulnerability Assessments & Threat Intelligence - Network & Information Security

Innovating The Next Big Thing

June 18, 2013

Sections

• Analyst Insights
• Enterprise Insights
• Network & Information Security
• Enterprise Mobility
• Remembering 9/11
• About

Next Innovator Group

• TechnologyInnovator
• NextInnovator
• EnterpriseInnovator
• SecurityInnovator
• DefenseInnovator
• WirelessInnovator
• HPinnovator
• EnergyInnovator
• TransportationInnovator
• SMBinnovator (beta)

Contact

• NextInnovator(at)Live.com

Writers Wanted

Feedjit Live Web Stats

Next Innovators

• Ghost City
• Frontline Sentinel
• Innovation Insights
• WebInno
• Over the River
• Enderle Group
• Security Insights Blog
• McAfee Audio Parasitics
• Rethinking Security
• Ovum
• iSuppli
• Canalys
• eMarketer
• CRM Help Desk SW
• Rethink Research
• The Gadgeteer
• Master the Moment

McAfee AudioParasitics

Barry's Books

Amazon.com Widgets

Ads

Network & Information Security

Frontline Sentinel: Improving IT Security with Vulnerability Assessments & Threat Intelligence
Aug 12, 2012 – Matthew Pascucci

Threats to your IT & Network Security are growing daily; and these threats come from an increasingly large number of sources. These threats are real and have the potential to destroy your business. Luckily, there are ways to minimize these threats and even prevent future IT security breaches.

One of the first things to do is perform a network security vulnerability assessment. A vulnerability assessment will help you identify any potential threats and vulnerabilities currently being posed to your network. Network & IT security vulnerability assessments have become a standard best practice, and most regulatory groups recommend or even require institutions to have a policy or plan that include them. The publisher of the PCI-DSS set of requirements, The PCI Security Council, is among these regulatory groups that now require organizations to perform assessments on a quarterly basis.

Although this task seems very daunting, it can often be a painless and routine process. Many organizations and businesses are choosing to outsource vulnerability assessments and scans to reputable IT Security firms that can consolidate all these scans inside one easily accessible location that includes scan scheduling, report review, and remediation recommendations. Outsourcing helps reduce the load on in-house IT departments, and leaves this highly important task to security experts.

Perimeter E-Security(http://Perimeterusa.com), a leading IT Security and Network firm recommends the following 3 types of network vulnerability scans:

External Scans: External vulnerability scans utilize cloud-based scanners to perform scans on any external-facing devices. Scans completed from this perspective can help organizations understand what someone trying to break into your network would be seeing.

Internal Scans: Internal assessment scans are performed inside of your network, and will expose potential vulnerabilities that an individual would see if they are past edge devices. Scanner software can often be provided that will be installed on a virtual machine or dedicated device, and can even be loaded on an as-needed basis on a shared device.

PCI Scans: A PCI scan is an external scan that includes the Statement of Attestation and Self-Assessment Questionnaire required by the PCI-DSS set of requirements. This scan also offers additional reporting including an overview of the current status of your PCI compliance, along with any additional areas that are currently out of compliance.

Going even further, Vulnerability Assessments are often offered as on-demand or managed services to fit varying budgets and IT plans. There will most likely be an option that is just right for the needs of your organization. Vulnerability assessments are critical to your IT security, and the best thing to do is start somewhere. If you neglect these security assessments, you could be leaving a gaping hole in your network that is just waiting to be exploited by intruders.

Matthew Pascucci is a freelance writer and information security practitioner. You can follow him at @matthewpascucci or his blog at www.Frontlinesentinal.com.

» Send this article to a friend...
» Comments? Tell us what you think...
» More Network & Information Security articles...

Comments

blog comments powered by Disqus

Search EnterpriseInnovator

Support This Site

Newest Articles

• 6/17 McAfee Blogs: The Defense Department Lists Mobile Security as a Top Priority
• 6/17 McAfee Blogs: The Strategic Consumer
• 6/17 McAfee Blogs: Keeping Your Small Business Safe from Cyberattacks
• 6/17 McAfee Blogs: Exciting Times for SMBs at National Small Business Week!
• 6/17 McAfee Blogs: Why whitelisting is ready for Enterprise desktops
• 6/13 Gartner Says Cloud Office Systems Total 8 Percent of the Overall Office Market and Will Rise to 33 Percent by 2017
• 6/13 Gartner Says Worldwide External Controller-Based Disk Storage Market Grew 0.6 Percent in First Quarter of 2013
• 6/13 Faultline: Vodafone Kabel Deutschland talks confirmed, deal could be dusted in days
• 6/13 Faultline: Comcast sneaks in Homespot revolution as “Neighborhood Hotspots”
• 6/13 McAfee Blogs: Two Steps are Better Than One: Make a Hacker’s Job Harder with Two-step Verification
• 6/12 Gartner Announces Keynote Speakers for its Supply Chain Executive Conference 2013 in Australia
• 6/12 Gartner Says by 2019, 90 Percent of Organizations Will Have Personal Data on IT Systems They Don't Own or Control
• 6/12 iSuppli: Doing What It Does Best: Apple Reinvents Existing iPhones with iOS7 and Competitive Music Launch
• 6/12 McAfee Blogs: Moving up with McAfee Complete Endpoint Protection
• 6/12 McAfee Blogs: Can you answer these three smart business questions about authentication?
• 6/12 HP Security lab Blog: Top 10 things for security people to do at HP Discover 2013 - Las Vegas, NV
• 6/12 HP Security Lab Blog: HP introduces HAVEn to combat $4 billion cyber-theft in Big Data space
• 6/11 Gartner Says Worldwide Security Market to Grow 8.7 Percent in 2013
• 6/11 Gartner Says Less than 10 Percent of Enterprises Have a True Information Strategy
• 6/10 Ovum: Analyst view: Google to buy Waze
• 6/10 Ovum: Analyst view: Apple acknowledges the need for user interface refresh and is willing to do something pretty dramatic
• 6/10 Gartner Forecasts Indian Business Intelligence Software Revenue to Reach $113 Million In 2013
• 6/10 iSuppli: It’s a Tie: Bosch and STM Hold Joint Honors as No. 1 MEMS Suppliers for 2012
• 6/10 iSuppli: 1.3GW of PV Installations Eliminated by EU Anti-Dumping Duties in 2013; Double-Digit Global Growth Still Likely
• 6/10 Wireless Watch: Small Cell World Summit: industry poised to kickstart volume roll-outs
• 6/10 Wireless Watch: Cisco seeks leading role in wireless via small cells
• 6/10 McAfee Blogs: Syrian Crisis Reminds Us to Beware of ‘Charity’ Scams
• 6/9 Frontline Sentinel: Whistleblower (Edward Snowden) Behind the NSA Surveillance Speaks Out [Interview]
• 6/9 Slate: If the NSA Trusted Edward Snowden With Our Data, Why Should We Trust the NSA?
• 6/8 Gartner Says Business Analytics Will Be Central for Business Reinvention
• 6/8 Frontline Sentinel: Practical Tips to Improve Network Security with What You Already Have: Part 2 of 2
• 6/7 Gartner Says India Enterprise Software Market To Reach $3.92 Billion in 2013
• 6/7 iSuppli: Event Cinema Market Takes Off in Europe
• 6/7 McAfee Blogs: Koobface Count Correction
• 6/6 Ovum: Ovum announces winners of inaugural “BYOX Strategy” awards
• 6/6 Ovum: Analyst view: SFDC acquisition of ExactTarget is expensive, but offers significant product synergies
• 6/6 Gartner Says Worldwide Business Intelligence, CPM and Analytic Applications/Performance Management Software Market Grew Seven Percent in 2012
• 6/6 Faultline: Cloud browsers to gut the set top market – ActiveVideo leading the chase
• 6/6 Faultline: TiVo wins its biggest ever settlement - share price barely nods
• 6/6 Canalys: Canalys launches ‘Partner Program Analysis’ service - The latest addition to Canalys’ leading channels research offerings
• 6/6 McAfee Blogs: Forgo Pressure to ‘Share’ and Boost Your Privacy
• 6/6 McAfee Blogs: Summer Web Safety: A Cautionary Tale About The Internet
• 6/6 McAfee Blogs: Malicious Dating, Ad Services Plague Japanese Users
• 6/6 McAfee Blogs: Locking Down Desktops With McAfee’s Application Control
• 6/6 McAfee Blogs: Fraudulent Adult Dating Services Turn 10 Years Old, Still Evolving
• 6/6 HP Security Lab Blog: Combating professional security threats
• 6/5 Ovum: Ovum warns BYOD is here to stay and urges CIOs to respond with a clear strategy
• 6/5 What to Expect at Apple's WWDC
• 6/5 Gartner Says Organizations Must Treat Information as an Asset in its Own Right
• 6/5 Gartner Looks At The Impact of U.S. Visa Legislation on India Offshore Outsourcing in Upcoming Webinar

Barry's Books

Amazon.com Widgets

Ads

Top