Mitigating security risks can protect an Information Technology Infrastructure and strengthen all aspects of a business. The reasons to reduce security vulnerabilities in your information systems are as close at hand as today’s news headlines. Today more and more companies are living through the real-life horror story of an information technology attack.
The reasons range from simple vandalism, corporate espionage or some form of information warfare waged by hostile foreign governments. While their motivations vary, the results of an information invasion are almost universally the same: enormous expense and massive negative impact on a company’s reputation.
The similarities in almost every case have been a lack of awareness of the high level of risk inherent in being connected to a public infrastructure like the Internet, and a minimal level of security built into today’s technology.
Security Assessment
Pegasus Technologies' Enterprise Security Methodology contains five stages of maturity and measurement categories which, when combined, reveal a company’s overall security posture.
A risk assessment is a detailed examination of systems and services that provide executive management a "snapshot" of the overall security posture of the computing infrastructure. This can entail several different tasks, such as penetration studies, vulnerability scans, and security baseline assessments. All of the tasks, when combined, should provide an accurate assessment of the state of existing security policies, procedures, and controls.
Risk assessment includes:
- Penetration/Vulnerability Studies
- Monthly Port Scans
- Security Baseline Assessments
- Intrusion Detection Analysis
Security Design
This service is intended for those organizations that have little to no computer security systems in place. It usually involves a current state assessment, recommendations for proper security, and the recommendations for filling in the gaps between the two states. At some point during this service, evaluations of software/hardware tools will be examined.
A complete security design may include:
- Design and creation of Virtual Private Networks for secure access to multiple locations
- Advisory consulting on Policy Development & Implementation of New Policies
- Creation of Certificate Authorities
- Access Controls
- Implementation of 24/7 Intrusion Detection & countermeasure devices
- Business Technology Requirements
Managed Security Services
This service is intended for Internet-connected companies that do not have the internal expertise or available resources to handle the many challenges of being connected to the public Internet. These companies depend on managed services from Pegasus Technologies to proactively protect their network investments, reduce risk, and maximize resources. Pegasus Technologies Managed Security Services identify, take corrective action, update, and manage risks to mission critical systems.
The types of Managed Security Services:
- Firewall Managed Service
- Router Managed Service
- VPN Managed Service
- Log Audit Managed Service
- Intrusion Detection Managed Service