Risk

» Information Security Audit

» IT Infrastructure Audit

» Vulnerability Assessment and Penetration Testing

» Web Application Security Audit

» Network Security Audit

» Mobile Security Audit

» Network Performance Audit

» Design a Secure IT Infrastructure





Information Security Audit

Information Security Audit comprises of auditing an organization’s security posture from an IT as well as non-IT perspective. Technical, functional and process audit for all aspects of security are included. This audit would encompass the whole organization and cover functions as per scope defined by the organization. The audit is conducted in compliance with ISO27001:2013 standard and covers the following

  • » Logical Security
  • » Environmental Security
  • » Physical Security
  • » Process review



IT Infrastructure Audit

Imperium Solution assists in the assessment of risk to an organization’s IT infrastructure. These audits encompasses

  • » Vulnerability Assessment
  • » Penetration testing
  • » Device Configuration Review
  • » Infrastructure Design Review
  • » Logical Security
  • » Environmental Security
  • » Physical Security
  • » Datacentre security



Vulnerability Assessment and Penetration testing

Vulnerability assessment is the process of identifying and quantifying vulnerabilities in a system. It involves identifying the vulnerabilities or potential threats to each resource and mitigating or eliminating the most serious vulnerabilities for the most valuable resources.

A penetration test is a method of evaluating the security of a computer system or network by simulating an attack by a malicious hacker. The process involves an active analysis of the system for any weaknesses, technical flaws or vulnerabilities. This analysis is carried out from the position of a potential attacker, and can involve active exploitation of security vulnerabilities. Any security issues found would be presented to the system owner together with an assessment of their impact and often with a proposal for mitigation or a technical solution.



Web Application Security Audit

Application Security audit focuses on conducting vulnerability assessment and penetration testing for exploitable vulnerabilities on hosted web servers, database servers, ERP solutions. For Application security, our team conducts audits in line with OWASP security guidelines.

We also cover the following aspects of application security

  • » Logical Security
  • » Environmental Security
  • » Physical Security
  • » Application Configuration
  • » Access Control



Network Security Audit

Network Security Audit primarily focuses on the logical, physical and environmental security of an organizations network and networking components like routers, firewalls, IPS/IDS, wireless access points, modems etc. As part of the network audit, we conduct a vulnerability assessment and penetration testing of the network devices. This covers the following

  • » Network Design Review
      LAN
    • Wired
    • Wireless
      WAN
  • » Device Configuration Review
  • » Vulnerability Assessment
  • » Penetration testing
  • » Logical Security
  • » Environmental Security
  • » Physical Security
  • » Datacentre security



Mobile Device Security Audit

This audit covers the security of the applications installed on a mobile device. With BYOD being implemented across organizations, it is of vital importance to test these devices for security loopholes which could compromise an organization’s overall security posture.



Network Performance Audit

Network Performance audits focuses on understanding and highlighting performance bottlenecks due to network components.



Design a Secure IT Infrastructure

Imperium Solutions helps assist organisation to design and implementation a secure IT infrastructure.