Network device assessments

Given the dependence on network devices such as firewalls, routers, switches and Intrusion Detection Systems (IDS) to maintain security, clients commonly request that these solutions are subject to further review, over and above that offered by an infrastructure penetration test.

With direct access to these systems, our consultants can conduct a comprehensive review evaluating all aspects of the configuration that can impact security; how the firewall has been set up, the software versions in use and the modules that have been added. For firewalls and similar devices, the exercise can be extended to cover a review of the rulebase.

For solutions that provide alerting, blocking or filtering (IDS, IPS, application firewalls, etc.), Portcullis can conduct controlled testing to evaluate the effectiveness of these systems. The type of testing covers the fundamental abilities of the system, the configuration that has been applied and how security staff interpret and respond to alerts. Whilst designed for live networks, this type of testing is equally applicable to systems under evaluation.

Why perform a Network device assessment?

• A Network Assessment will give IT management a clear understanding as to whether the current design, architecture and network performance is meeting business requirements and needs.
• A Network Assessment will provide sound recommendations on how to overcome network issues and present a clear plan for moving forward.
• Ensures device configurations conform to industry best practices.
• Provides assurances that critical acess control mechanisms are in place, aligned with prevailing good practice, and operating as intended.
• Provides a measure of assurance that those systems and aplications that are reliant upon the devices are secured in accordance with their expectation.
• Above all, your company will benefit from having a recorded, in-depth analysis of the existing network infrastructure for future reference.