CompliancePoint

Practice Areas

Direct Marketing Compliance

Information Security Compliance

PCI Certifications
PCI DSS Assessment
PCI Payment Application (PA-DSS) Assessment
Policy & Procedures
Information Risk Management
Risk Assessments
Business Continuity & Disaster Recovery Planning
Vulnerability Assessment & Penetration Testing
Co-managed Security & Compliance Program
Compliance Consulting Services
HIPAA
HIPAA - Elements of Analysis
SSAE16 SOC Reports
GLBA
SOX
FCRA
SB 1386
Information Security Services
Architecture & Engineering
Operations

Vulnerability Assessment & Penetration Testing

Organizations face increased and highly sophisticated attacks on their computer systems. That means increased pressure to protect and safeguard corporate data.

Are your security defenses functioning as designed? How do you know?

CompliancePoint's Vulnerability Assessment & Penetration Testing services can provide the assurance that you need. Our comprehensive service focuses on your organization's computer system security for both external and internal topologies.

Our vulnerability and penetration testing covers a broad spectrum including:

Servers
Software applications
Databases
Network appliances

CompliancePoint uses automated and manual scanning techniques to determine any anomalous or insecure protocols, ports, services, system and application configurations. Our assessment methodology aligns with NIST-SP800-42 guidelines and involves:

Foot printing
Port scanning
Whois
Services identification
System vulnerability assessment
Application vulnerability assessment based on OWASP Top 10
Application spider scan

We can provide our services to test a single network or all of the networks in your organization. We identify the weaknesses in the targeted systems and provide a detailed report which includes prioritized recommended remediation actions for improving your company's security posture.

CompliancePoint's comprehensive Network Vulnerability & Penetration Testing provides:

PCI DSS v2.0 sections 11.2 and 11.3 compliance
Identification of potential IT infrastructure security vulnerabilities
A determination of the degree of exposure to external and internal threats
Assessing the active defense systems (i.e. Intrusion Detection System and Computer Incident Response Team)
Ensuring that existing security measures function properly
Verification that systems and applications have been properly developed and secured
Facilitating the design and plan for implementation of countermeasures

Developing a remediation project plan
Ensuring that existing measures function properly

For more information on our Vulnerability Assessment & Penetration Testing Services, please call (800) 585-4888 or email security@compliancepoint.com.

Questions?