C5i Corporation

Managed Vulnerability Assessment

Any computer connected to the Internet is vulnerable to attack, especially in light of the increasing number and sophistication of attacks. For many enterprises faced with the changing dynamics of business security threats can be easy to come by. Add to that the complexity of the changing technological landscape and you have an almost insurmountable problem. Your current software may be secure, but the intense pace of upgrades creates new vulnerabilities daily.

Being aware of system vulnerabilities that may be exploited is vital to addressing problems before an organizations network and data are compromised. C5i offers a subscription-based assessment service that provides clients an ideal way to regularly test the security of their Internet connected systems. This service provides an assessment that, when acted upon, will allow an organization to implement measures necessary in preventing a potentially devastating attack.

C5i's Managed Internet Vulnerability Assessment Service is periodically scans and assesses all of clients' Internet-connected systems, including but not limited to: firewalls, Web servers, mail servers, e-commerce servers, DNS servers, and personal computers workstations. The service checks for vulnerabilities that can be observed and exploited over the Internet by unauthorized individuals, including hackers, crackers, information brokers, and thieves, to name just a few. By providing independent assessments to validate the effectiveness of an organization's Internet security controls, this service complements an organization's firewall security systems.

Some of the highlights of the service include:

  • Assesses vulnerabilities by identifying exploitable configuration weaknesses.
  • Analyzes and ranks exploitable weaknesses based on potential impact and likelihood of occurrence.
  • Provides prioritized recommendations for mitigating or eliminating weaknesses.
  • Reassesses the Internet-exposed environment on a regular basis according to an organization's operational schedule, and reports any changes and anomalies.
  • Provides objective, third-party security assessments of the organization's Internet-exposed environment, enabling management to demonstrate its commitment to protecting the company's information assets.
  • Demonstrates return-on-investment.
  • Assesses vulnerabilities by identifying exploitable configuration weaknesses.
  • Validates security policy compliance.
  • Analyzes and ranks exploitable weaknesses based on potential impact and likelihood of occurrence.
  • Provides prioritized recommendations for mitigating or eliminating weaknesses.
  • Reassesses the Internet-exposed environment on a regular basis according to an organization's operational schedule, and reports any changes and anomalies.
  • Provides objective, third-party security assessments and compliance of the organization's Internet-exposed environment, enabling management to demonstrate its commitment to protecting the company's information assets.