The value of an independent, objective evaluation of security over private data cannot be underestimated. With a hypersensitive public that expects their information to be kept private, firms have an increasingly more demanding job keeping up with security let alone technology.
The overall objective of an Information Technology (IT) Security Audit is to evaluate the controls over information technology that are in place and make recommendations for improvement. The result? Recommendations for an appropriate level of protection over confidential, proprietary, or important data.
Security Services:
- Evaluate hardware, software and other security systems
- Evaluate servers for settings that follow "best practices" regarding security
- Evaluate firewall adequacy, security settings, and related systems
- Evaluate IT department policies, processes, and documentation regarding security
- Identify weaknesses in the IT control environment
- Perform network penetration testing
- Provide report of weaknesses in controls over IT to management
- Provide written recommendations for improvements