-
Network Architecture Review and Documentation
The first step in building a security and regulatory compliance methodology is conducting an audit and determining the number of existing systems and the integration points that exist. The Industrial Defender Security Consulting Services team can quickly document the architecture in a logical network diagram, complete with security zones for each unique environment, based on interviews with key staff on-site and by referencing existing network maps and diagrams.
- Vulnerability Assessment Services
Having deep cyber security, real-time process control / SCADA, and operations expertise enables the Industrial Defender Security Consulting Services team to analyze system vulnerabilities and create a comprehensive recommendation which will not adversely affect real-time production environments. The assessment results are provided in a full report.
- Penetration Testing Services
The only way to know for sure if a hacker or intruder can actually gain access into your network and/or facility is to actually test the vulnerabilities found in an assessment with penetration testing. The team utilizes specialized, goal-oriented testing to gain privileged access by pre-conditional means using a safe "hacker" and/or intruder methodology. Security testers and analysts will use the same proven techniques and methodologies that hackers use to gain unauthorized entry to networks and computer systems. Intrusion specialists use the same proven techniques and methodologies that could be used by real world thieves, intruders, or even terrorists. The results will be published and provided to you in a full report complete with usable database data, charts and graphs, counter measure options, while at the same time, posing absolutely no actual risk to your network, computer systems, physical security controls, or personnel. Penetration Testing can be done in
collaboration with the client staff or in a covert setting.
- Emergency Response and Disaster Recovery Consulting
Emergency Response planning, when coupled with Disaster Recovery planning, outlines a road map for your organization to quickly recover and restore critical operational functions after an unexpected event. These events can include potential natural, environmental, technological, and man-made threats. The NIST 800-30 methodology is used to identify the most likely threat sources and create threat pairs based on impact and risk to operations. For each risk that poses a significant impact to operations, we identify the need for a specific Emergency Response to that risk. These individual response plans are merged into a unified Emergency Response Plan that includes clear instructions for the Incident Response team to follow. The planning process is a key deliverable that forces managers and their staff to explore viable options that can be employed in the event of an emergency or disaster. These contingencies can ultimately help to save lives, reduce property loss,
as well as lessen an organization's potential liability. The Disaster Recovery Planning work helps identify the all of the critical systems required for operations to continue. This plan also includes the backup and recovery process for each system. Our team identifies each critical system (hardware, software, and network devices), and the acceptable downtime for each system.
- Red Team Testing
While the Penetration Testing Services can occur anywhere in the network environment, the Red Team Test is an all-out attempt to gain physical or cyber access to a critical infrastructure system from the outside, with little or no information about the target. During a Red Team Test, a highly skilled team of security professionals use adversary techniques commonly used by hackers, cyber terrorists, and motivated criminals to gain either physical or cyber access of a critical infrastructure system. Ground rules for these types of projects are negotiated and documented prior to project start, and our teams operate under the restraint that they can "do no harm" to any physical, electronic, or cyber systems during the Red Team Test. To maximize the value of a Red Team Test, the test should be performed in a very covert manner, and no one on the inside of the IT or security teams should be tipped off that this type of test is underway. Usually, the project
sponsor is the only one at the client location that is aware that this test is being performed.
|
