Secure Ideas has been testing security systems since 2010 and supporting our clients' vulnerability management. Through these efforts we have realized that many organizations can use a helping hand. To solve this issue, Secure Ideas offers NetworkScout. NetworkScout is a subscription-based service to perform asset discovery and vulnerability assessments.
NetworkScout takes vulnerability scanning to the next level by adding a human component. A professional security staff member vets all testing results to remove false positives and false negatives, as well as provide detailed recommendations for remediation. The resulting report has been reduced to a manageable size with actionable results that make sense to the particular organization and industry at hand.
The first step in vulnerability management is to enumerate and classify the vulnerabilities that exist on the network. We cannot fix what we do not know about. Many organizations have a good idea of what is on their network, but few know for sure. Today’s networks are no longer simple static collections of physical machines. We have virtual machines, VPNs, and personal PCs the size of a deck of cards. Employees can deploy new hosts and enable new services quickly and easily, sometimes with authorization and sometimes without. Unfortunately enumerating these systems and their inherent vulnerabilities can be a difficult, time-consuming task for IT personnel. This is where Scout can help. Scout’s Network Vulnerability Assessments simplify the process of vulnerability scanning and deliver a straightforward report that IT management can use to make risk-based decisions about how to secure the network.
Scout subscriptions are a recurring testing model. During each test, our consultants follow as set of procedures that build upon the previous tests. Our process is as follows: