SC – Hardened Network Assessment -

No network is 100-percent safe from malicious attacks, but proper hardening can eliminate vulnerabilities that leave your organization susceptible to cyber attacks.

Our Hardened Network Assessment, the first online self-assessment of its kind, will measure your network security posture and generate a customized report in just a few minutes.

Want to know your network hardening score?

Start Assessment

IT Governance

IT governance sets the foundation for an enterprise’s IT security posture. It requires an IT steering committee; IT policies, procedures, standards, and guidelines; and performance measures and metrics.

MUST-HAVE ITEMS

MODERATELY SECURITY-FOCUSED

EXTREMELY SECURITY-FOCUSED

1/1 IT Governance (Click Box If Yes)

Are IT policies, procedures, standards, and guidelines in place and followed?
Do employees receive end user security awareness testing and training?
Are IT policies based on a security controls framework?
Does the CISO report to the CIO?
Does an IT steering committee or equivalent exist?
Are annual compliance tests (e.g., SOX, PCI, and HIPAA) performed?

Next section Previous section

WAN/MAN

Wide area networks are primarily associated with organizations that have multiple remote physical locations requiring direct connections to the enterprise’s core network. This section focuses on security measure and controls surrounding WAN and MAN.

MUST-HAVE ITEMS

MODERATELY SECURITY-FOCUSED

EXTREMELY SECURITY-FOCUSED

1/1 Remote Organization Location (Click Box If Yes)

Do remote locations adhere to enterprise IT policies, procedures, standards, and guidelines?
Do remote locations have limited technology (e.g., firewalls, distribution switches, workstations, and multi-function printing)?

Next section Previous section

Web Application

Many organizations enable customers to interact with them via a web application. Securing web applications has become a critical component of securing an enterprises overall technology environment. This section provides basic controls for securing web applications.

MUST-HAVE ITEMS

MODERATELY SECURITY-FOCUSED

EXTREMELY SECURITY-FOCUSED

1/2 Web Application Firewall (Click Box If Yes)

Are web application-specific vulnerability assessments performed?
Is URL filtering enabled and configured?

2/2 Web Applications— User Provisioning: (Click Box If Yes)

Are administrator accounts managed?
Are user accounts managed?
Are user accounts configured with role-based security and least access principles?
Does the enterprise practice security-conscious development?
Are inactive accounts disabled?

Next section Previous section

ASSESSMENT COMPLETED!

Thank you for completing the high-level assessment.

We hope you find this information helpful in improving the security posture of your technology environment. If you have any questions, please contact us