|
Security
A network audit provides the opportunity to have a Network Professional inspect your computing infrastructure and provide you with concise recommendations about your network. What does the current network environment look like, how is it working, and how can it be made to work better? Network Audit and Analysis includes a complete understanding of the physical network, development of a logical baseline, and validation of key operational documents and metrics.
Network Audit and Analysis provides you with an assessment of your network's performance to:
- Help optimize existing network components
- Proactively identify and resolve traffic and design issues
- Increase network performance and availability
- Establish baselines to measure future improvements or changes
- Better optimize all of your IT resources
Determine the objectives of the audit
Before purchasing a network audit, you and your Terracom Consulting Team will set objectives for the Audit. Each network audit must be tailored to the type of network and the level of security required by your company's security policy. In general, a network audit should determine whether the network functions as it was designed and meets the design and usage requirements. You will also identify the people in charge of network design, operations, and security who should receive a copy of the completed audit report.
Perform preliminary analysis and planning of the audit We will use your company's security policy as a guide for the network audit. If you don't have a security policy, then we can help you develop a policy around your business model. We will also need if readily available; lists of network hardware, software, and users helpful in planning the audit. A comprehensive audit goes beyond checking file system integrity and users' rights.
As we plan your network audit, you should consider how each of the following items is addressed in your company's security policy and decide whether we need to gather information about the item:
- Network hardware and software
- Network communications and cabling
- Network users
- Corporate policies, procedures, and standards
- Operational and physical security
- Workstation operating systems and configuration
- Network operating systems and configuration
- Login and password administration
- User account policies
- Remote access
- File system organization and security
- Network documentation and schematics
- Data migration and archiving
- Network availability, response time, and problem reporting
- Network maintenance procedures
- Backup, recovery, and contingency planning
Gathering Detailed Information
Gathering data can be the most difficult part of a network audit. In this phase of the audit, you must gather all of the data you need to determine the current status of your network's security.
Analyze and Assess the environment
In this phase of the network audit, you analyze the information you gathered to identify risks and ways to improve security. You might find that you lack the information necessary to make a concrete conclusion. In this case, you must gather the additional information you need to support any conclusions you make.
Prepare the auditing report or action plan
After you have collected and analyzed information about your network, you are ready to report your findings. Not only should you report any significant weaknesses, but you should also provide specific recommendations to remedy these weaknesses. A complete auditing report might take a significant amount of time to produce. If you found any major security problems, you might want to issue a preliminary report so that these problems could be fixed immediately.
|  |
|
-
-
-
|
 |
|
|
