Remote Examination:

• Footprint Process: Your institution is electronically researched to discover all public information that would be available to an attacker. Other searches are conducted to find private information that may be used by unauthorized individuals.
• External Scans and Penetration Testing: A series of automated and manual scans are used to discover all open ports through your Internet presence, find existing vulnerabilities, and identify any rogue modems that allow inbound connections.
• Social Engineering: Publicly gathered information is utilized to orchestrate social engineering tactics on your employees. The resulting report will enable you to examine the security awareness of your employees and plan any necessary training.

Evaluation & Documentation:

• Data Analysis: Information gathered during the external phase will be analyzed to separate false positives from actual vulnerabilities.
• Executive Summary and Supporting Documentation: A comprehensive report will be produced. A non-technical executive level summary is provided to highlight the key findings of the assessment and provide an evaluation of your institution’s external security. A detailed report will describe all vulnerabilities identified, including description of the threat, level of risk, and appropriate mitigation procedures. A raw report data from the various scans will also be included to supplement the assessment report.

Presentation:

• Deliverable Presentation: The completed assessment will be fully reviewed and explained to key personnel, and any questions will be addressed. Both a printed and electronic version of the report will be provided.