Upload File

aligning investments and resources to reduce business risks. · resources, expose any security gaps...

  • Home
  • Documents
  • Aligning investments and resources to reduce business risks. · resources, expose any security gaps and risks, and get facts to help with strategic planning. The Solution Zones proposed
3
Case Study Visit zones.com or call 800.408.ZONES today. First Choice for IT Aligning investments and resources to reduce business risks. When the Board of Directors of a software publishing company wanted confirmation that current security investments and resources were addressing risks and vulnerabilities, Zones nfrastructure, the services company of Zones, stepped in to help. Based on information gathered by assessments, the Zones security team identified security vulnerabilities for remediation and helped resolve investment and resource allocation. Solution Zones nfrastructure services, including: • Network Risk & Vulnerability Assessment. • Zones Penetration Testing. Zones Application Security Assessment. Results • Validate security policies, procedures, and standards. Reduce data breach or data loss risk. Improve visibility, management, and control of data through lifecycle. Ensure compliance with standards/best practices. Extend value of internal IT security team with certified security experts. Challenge • Better align security investments and resources to address risks and vulnerabilities across multiple attack vectors. Security FORTIFICATION | Security Assessments Network Risk Assessment

Upload: others

Post on 22-Sep-2020

9 views

Category:

Documents


0 download

Report

TRANSCRIPT

Page 1: Aligning investments and resources to reduce business risks. · resources, expose any security gaps and risks, and get facts to help with strategic planning. The Solution Zones proposed

Case Study

Visit zones.com or call 800.408.ZONES today. First Choice for IT™

Aligning investments and resources to reduce business risks.When the Board of Directors of a software publishing company wanted confirmation that current security investments and resources were addressing risks and vulnerabilities, Zones nfrastructure, the services company of Zones, stepped in to help. Based on information gathered by assessments, the Zones security team identified security vulnerabilities for remediation and helped resolve investment and resource allocation.

SolutionZones nfrastructure services, including:

• Network Risk & Vulnerability Assessment.

• Zones Penetration Testing.

• Zones Application Security Assessment.

Results• Validate security policies,

procedures, and standards.

• Reduce data breach or data loss risk.

• Improve visibility, management, and control of data through lifecycle.

• Ensure compliance with standards/best practices.

• Extend value of internal IT security team with certified security experts.

Challenge• Better align security investments

and resources to address risks and vulnerabilities across multiple attack vectors.

Security FORTIFICATION | Security Assessments

Network Risk Assessment

Page 2: Aligning investments and resources to reduce business risks. · resources, expose any security gaps and risks, and get facts to help with strategic planning. The Solution Zones proposed

The Challenge

The CIO and the IT team needed to act quickly to produce a report of the company’s existing security posture. The objective was to help the company align investment and resources, expose any security gaps and risks, and get facts to help with strategic planning.

The Solution

Zones proposed a comprehensive Network Risk & Vulnerability Assessment, Penetration Testing, and an Application Security Assessment, to identify existing security gaps and establish a baseline to improve their overall security posture.

Network Risk & Vulnerability Assessment

• Identify, categorize, and prioritize present vulnerabilities that can be exploited.

• Identify gaps in policies, procedures or regulatory compliance requirements.

• Identify network deficiencies and correlate them to practical solutions.

• Uncover specific security threats that may require penetration testing.

Penetration Testing

• Review of network, operating system, application and endpoint security measures.

• Assess the magnitude of potential business and operational impacts of successful attacks.

• Enable compliance with industry-driven regulatory requirements.

• Provide evidence to support increased investments based on external, internal, or website application penetration testing.

The Solution (continued)

The Results

When summarizing the project, the client said “Zones provided a comprehensive solution to help us in identifying existing gaps in our security program and a cost-effective strategy for improving our overall security posture through a combination of security products and services. Most importantly, Zones was able to highlight and prioritize the areas needing attention so that we could focus our limited resources in the most efficient and effective manner.”

Through the Network Risk & Vulnerability Assessment, Zones delivered the following:

• Client Scorecard highlighting level of risk by examined attack area with detailed findings to help the client focus their resources and investment on the most critical areas in their environment.

• SANS Security Controls Benchmark summary for comparison against the industry-standard SANS cyber-security maturity model, providing a comprehensive summary of their overall risk by functional area.

• Strategic recommendations allowing the client to prioritize areas of focus based on assessment findings, security goals, and level of effort for remediation.

• Maturity Roadmap, including a step-by-step framework and timeline to enhance security posture based on identified goals or compliance requirements.

Case Study | Security FORTIFICATION | Security Assessments

Network Risk Assessment

Visit zones.com or call 800.408.ZONES today. First Choice for IT™

Application Security Assessment

• Probe, identify, and exploit systems with manual techniques and automated tools.

• Attempt to escape out of network and application boundaries of the systems.

• Attempt to gain unauthorized access to systems connected to the web application.

• Run black box unauthenticated and authenticated testing using roles and workflows.

• Evaluate source code, infrastructure, operating systems, and application functionality.

Page 3: Aligning investments and resources to reduce business risks. · resources, expose any security gaps and risks, and get facts to help with strategic planning. The Solution Zones proposed

Visit zones.com or call 800.408.ZONES today. First Choice for IT™©2019 Zones, LLC. All rights reserved. Unauthorized duplication is a violation of federal laws. Zones and Zones.com are registered trademarks of Zones, LLC. All product names are trademarks of their respective holders.

The Results (continued)

Case Study | Security FORTIFICATION | Security Assessments

Network Risk Assessment

2017251_Network Risk Assessment_191003

Based on the detailed finding of the Network Risk & Vulnerability Assessment and recommendations from Zones, the company remediated the identified risk areas and implemented a Security Information and Event Management (SIEM) solution to provide real-time event logging and analysis of security alerts generated by their network applications.

Additionally, since they are a software publisher, the company invested in an Application Security Assessment to help identify vulnerabilities in their software, including unauthorized access to critical data and application functionality.

Due to the comprehensive approach to security proposed by Zones, the client is currently investing in an Intrusion Detection/Prevention System (IDS/IPS) as well as a Data Loss Prevention (DLP) solution to improve visibility to inbound threats and to data throughout its lifecycle to reduce data loss risk.

Client Benefits

• Identified weaknesses in existing policies, procedures, and standards.

• Validated security monitoring, incident identification, and response procedures.

• Identified security vulnerabilities for remediation, identified investment, and resource allocation.

• Reducing data breach or data loss risk.

• Improved visibility, management, and control of data through lifecycle.

• Ensuring compliance with standards/best practices.

• Extended value of internal IT security team with certified security experts.


A Robust Approach to Aligning Heterogeneous Lexical Resources

Importance Of Aligning Human Resources With Strategy

Successfully Aligning Resources With Planning League of Innovation Conference March 10, 2013

New Media Marketing: Resources, Risks, and Rewards

Aligning Aquaculture KPI Metrics with other livestock ...animalagriculture.org/resources/Pictures/Matlock, Marty_2.pdf · Aligning Aquaculture KPI Metrics with other livestock sectors

BETTER TOGETHER Aligning Resources and Partners in CA Regions

Managing human resources risks notes @ bec doms

Resident Choice Resident Choice Culture & Environment Aligning Expectations – Resources – Outcomes

Aligning Curriculum Resources With Standards · FACILITATOR GUIDE FOR MATHEMATICS ... Curriculum Resource with CCR Standards ... accompanying digital curriculum resources; and

Strategic Mapping & Program Alignment Aligning Experiences – Expectations – Resources – Outcomes

Results Oriented Strategic Planning : A Framework for Aligning Public Sector Resources

Healthy Homes Detroit The Goal: Make 120+ homes healthy and safe Make 120+ homes healthy and safe Aligning partner resources Aligning partner resources

Aligning Performance Evaluations with Organizational ... · Aligning Performance Evaluations with Organizational Strategies Holly Winn, Vice President, Human Resources and Ancillary

UAF Shaping Alaska’s Future Aligning Resources – Serving our Communities

Aligning Agency Resources to Drive Performancedergiler.sgb.gov.tr/kurumsal/straplan/dokumanlar/Aligning Agency... · Hillside Family of Agencies • Founded as an orphanage in 1837

Strategic Human Resources Management: Aligning with the Mission

HUMAN RESOURCES MANAGEMENT HUMAN ... - …forummanajemen.com/silabus/Human-Resources-Management.pdf · Resources Management system that could provide value ... - Modul 1 : Aligning

District How to: Aligning, Integrating & Leveraging Resources for … · 2021. 5. 11. · District How to: Aligning, Integrating & Leveraging Resources for MTSS-B Implementation Heidi

Aligning City, County and State Resources to Address the ... · breaking down silos and stretching scarce resources. Local leaders can also work ... Aligning City, County and State

November 2018 Aligning EU resources and expenditure with

Aligning Corporate University Outcomes to Business ... · Aligning Corporate University Outcomes to Business Strategy and Organizational Goals Additional Resources Performance Consulting

Aligning Curriculum Resources with Standards - LINCS · Aligning Curriculum ... There is evidence in the resource to indicate that the dimension can be ... Does the resource design

Workforce Development and Human Capital Management Aligning Resources and Strategies

Achieving Excellence in Education: Aligning University ...siteresources.worldbank.org/EXTCENFINREPREF/Resources/4152117... · Achieving Excellence in Education: Aligning University

Aligning Federal and State Approaches to Integrating ... · Aligning Federal and State Approaches to Integrating Primary Care and Community Resources December 9, 2013 This webcast

Occupational Health in Seafood Processing: Risks and Resources

Aligning Human Resources practices to Service …gsblibrary.uct.ac.za/ResearchReports/2008/Coowar.pdfResearch Report: Aligning Human Resources practices to Service Strategy: An analysis

Aligning Human Resources and Conflict Management Services

Aligning Partnerships and Resources to Serve At-Risk Students Congress/KPACE...Aligning Partnerships and Resources to Serve At-Risk Students ACCT Conference October 16, 2015 ... curriculum

2016&17!Budget Priori2zing!&!Aligning!Resources! …ww2.jamestownpublicschools.org/wp-content/uploads/2016/02/2016 …2016&17!Budget Priori2zing!&!Aligning!Resources! with!the!Strategic!Plan!

10-Managing Human Resources Risks

Shippers: Resources for Aligning Win Win Relationships ... · 15/03/2017  · Resources For Aligning Win Win Relationships With Your Carriers March 15, 2017 2:00 ET 1. ... Confidential

Whitepaper Aligning Key Themes in Human …drivehrmconsultancy.nl/wp-content/uploads/JLS_Agile-HR...Whitepaper | Aligning Key Themes in Human Resources to Lean | Agile Values & Principles

FREE RESOURCES For Aligning Instruction to Grade Level Standards Working SMARTER Not Harder

Operational Risks - USALearning€¦ · Operational Risks . 20. Operational Risks. Human resources Physical security Data storage locations Regulatory compliance Cloud provider outsourcing