The Quick Read If you conduct business over the Internet or simply connected, you should consider conducting an Internet Security Assessment Internet architecture review with vulnerability scanning and penetration testing Policy and process review to determine effective implementation of management controls Click Here to download Internet (External Network) Security Assessment (pdf)

Who Needs an Internet Security Assessment?

	Any company that is connected to the Internet, even if your business does not require Internet access.
	Companies that conduct Internet business such as e-commerce should conduct Internet Security Assessments on a quarterly basis to ensure current security requirements are being maintained.
	Companies that provide services over the Internet, such as database access or information via web servers expose your business to new risk when connected across the open public Internet.

What is an Internet Security Assessment?

The Internet Security Assessment service is designed to provide you with a comprehensive review of your Internet environment across your technology architecture and your management processes. The technology architecture review includes design and configuration analysis as well as vulnerability and intrusion testing to ensure hackers can not breach your information or cause undue harm to your business.

Additional components included in this Internet Security Assessment are:

	Internet architecture review to understand how you have segmented untrusted (external) traffic from gaining direct access to your trusted (internal) networks		Interviews to determine management controls that are implemented and repeatable as standard practice
	Vulnerability scanning and penetration testing to determine potential security exposures that could be leveraged by an internet hacker

Internet Security Assessment Engagement Process and Deliverables

After an initial call, the Arsenal Security Group Senior Partner will prepare a statement of work within 2 days and we normally can begin an engagement within two weeks. During the engagement we will use interviews, questionnaires, physical tours and technical tools to develop our assessment. We usually use 1-2 consultants in tandem with our Senior Partner to complete an engagement. We will provide an executive summary, a detailed report with all of our findings and recommendations, and a final onsite presentation. Our engagement is not complete until all of our deliverables have been reviewed and accepted by our client.

About Arsenal Security Group
Arsenal Security Group is a security consulting firm that is focused on close client coordination and collaboration. From the initial meeting through the final presentation, one of Arsenal Security Group’s Senior Partners will be the primary contact for all engagement activities. We proactively conduct weekly calls with our client when engaged and meet with clients on a quarterly basis to review and understand their security posture – even when we are not actively engaged on assignment to ensure they are aware of new security risks or regulatory changes they may impact their business.

^^ Top