Network Risk Assessment
In order to determine network risk, Apex works with our customers as partners to:
- Determine the assets that need protecting
- Identify the likely culprits looking to access this information
- Understand the implications resulting if the information is lost or damaged
- Assess the risk appetite for said information
Our experienced team reviews the competitive landscape to see what threats others are facing and discusses past attacks the organization may have seen.
We also note the regulatory environment governing the company - from FINRA to PCI and HIPAA to ensure we are advising the company on best practices to comply with their appropriate agency.
At this point, we collect pertinent data via network inspection and scans to see how devices are interconnected as well as ensuring equipment has the latest patches and updates.
A network assessment can be coupled with a penetration test which is recommended as this test simulates what a hacker would use to probe your network for vulnerabilities.
We also go over password policies - physically inspect the environment if possible and determine which practices should be modified to meet best industry practices.
In addition, we explore disaster recovery and business continuity preparedness to determine potential room for improvement.
We produce a thorough document which shows the risks to your organization.
Typically, we are called to do such assessments when there is a change in executive management or when an audit is forthcoming.
We find such an assessment should be done at least annually to ensure optimal network operation. The risks to every business are growing and hackers are probing organizations constantly. Knowing risk and addressing it is preferable to having a successful attacker make off with corporate data or install ransomware and shut the network and company down.