Helping your organization implement effective security management practices that secure effectively your organization technology infrastructure. This program makes rigorous use of industry’s best practices programs notably NIST to provide the baseline security controls within specific technology areas. We have found that sometimes organization had spent considerable amount of resources deploying advanced security solutions for confidentiality, availability and authenticity. However management ability to assess the performance of security investment were somewhat limited. More often the need for management to align their strategic organizational requirements with appropriate security control and measures were also lacking. Our approach using NIST makes abstraction of systems specific security controls while at the same time proposing effective processes and controls within the various fields of enterprise technology. NIST approach brings various methods to impelement a metrics-based framework for assessing the effectiveness of security programs.
-systems security configurations & hardening
-storage encryption
-cryptographic key management
-wify & Wimax security
-virtualization security
-cell phones and PDA
-servers & web servers security
-bluetooth security
-EAP wireless authentication, 802.11i
-secure IPV6
-SSL VPN, IPSEC VPN
-telework and remote accesss
-PIV cards
-RFID
-web services
-IDPS intrusion detection prevention systems
-digital signatures
-computer security log management
-media sanitizing
-secure DNS deployment
-Industrial Control Systems security
-PDA Cellphones forensics preparation
-electronic authentication
-VoIP security
-E-mail security
-firewall & policies
-patch & vulnerability management
-IT security products & services consulting
-PKI
-security controls
-PBX security
Security metrics
Using metrics and KPI to monitor information security performance
This is not a real time monitoring tool as much as it is a management tool to assess the effectiveness of information security program. It is part of optimization and alignment process and help document the proper governance of technology investments.
Metrics and KPI are pre-determined treshold values who help determine if parameters (goals) that have been assigned have actually been achieved in processes and activities.
Creating metrics from security systems and sensors activities-generated log reports and security processes derived measurement (from baseline)
metrics are generally obtained by collecting a series of measurement which can be interpreted by baseline over a time period (frequencies) or against a baseline of performance goals. It related to a set of activities more then to a discrete one-time event. We aim at introducing excellence in design and management of security systems using quantitative analysis and defect discovery.
A maturity level approach for security policies can be incorporate Cobit
key drivers can be strategic ( the upper management anticipates that a better training management of password/key I.e significant drops in forgotten password will diminish risk of data loss)
or tactical (failed login attempt: break-in vs poor password management)
we help you establish security metrics monitoring program that we help identify the key following considerations:
-quality of implementation of security policies
-impact of measures to the availability / confidentiality / integrity of information systems operation
-analysis of data from IT systems adherence to rules, policies and procedures in order to determine compliance with the security policies
-evaluate the effectiveness of policies and security controls for risk management
-conduct trend analysis to identify areas in which security practices and tools are defficient
quantitative methods can be developed to assess the maturity level of security processes, and the entire infosec program covering training, certification,
-establishing a repository of collected data regarding security conditions of system, as a future strategic planning and tactical threat/anomaly correlation tool.
Establishing methodology to collect data & measurement from operational systems, security applications deployed,
Building a log monitoring infrastructure
Hadoop
