Enterprise ITOPSEC Assessment (EIA)
Evolution’s Enterprise ITOPSEC Assessment (EIA) service provides a detailed assessment of an organization’s preparedness for strong IT operational security (IT OPSEC) based on reviews of the following items:
• Security Policy and Processes
• Security/Privacy Program Management
• Technology Infrastructure and Security Controls
• Security Organization and Governance
• Operational Effectiveness
Network Vulnerability Assessment – Internal/External (NVA)
Evolution’s Network Vulnerability Assessment identifies network vulnerabilities using the most sophisticated techniques available. Mimicking a malicious intruder, Evolution gathers network information, runs automated scanning tools sanctioned by SANS and (ISC)2 and uses extensive manual testing to discover network vulnerabilities.
Evolution’s external network vulnerability testing probes Internet points-of-presence for known security vulnerabilities; internal network vulnerability testing assesses network security from inside a DMZ or within an organization’s trusted production network. All testing uses strict controls with an emphasis on protecting each client’s security and privacy via a mutual non disclosure agreement that is signed prior to the work performed.
Evolution’s internal network vulnerability assessment includes the same steps as the external assessment with the addition of a review of operational security practices regarding password management, patch control, etc.
