Home » Services » Information Assurance » Security Assessment
Security Assessment
Harris Information Technology Services Security Assessment Services provide a clear and comprehensive understanding of the security posture of an organization's information systems and computing environment. We deliver these services utilizing highly trained and certified professionals employing proven processes. Our Security Assessment Services are based on National Security Agency (NSA) defined processes designed to:
- Categorize mission-essential information resources
- Identify critical computing assets
- Expose security vulnerabilities
- Recommend mitigations
- Provide a comprehensive assessment of the security posture of a network or information system
Our Security Assessment Services are delivered in a multi-phased approach covering the following functional areas:
- Pre-assessment: to refine customer needs; gain an understanding of the criticality of the customer's information; identify system, including system boundaries; logistics coordination and assessment plan development
- On-site activity: to confirm the information and conclusions made during the pre-assessment phase; perform data gathering and validation; examination of the security configuration of the servers, workstations, and network devices for vulnerabilities and exposures; validate/test security controls; provide recommendations (countermeasures) for improvement of the security posture; provide initial analysis and feedback to the customer
- Post-assessment: finalize analysis and prepare final report.