internal Network Vulnerability Assessment (iNVA

By: Psicurity  09-12-2011
Keywords: Security Management

A majority of electronic break-ins occur from within an organization.
—Common Knowledge

Internal networks often lack the high security standards applied to their external “Internet-facing” perimeter. This results in an internal network that is vulnerable to the whims of both malicious, or simply curious, employees.

It is often assumed that the greatest threats occur from outside an organization. However, statistics show that networks are more often compromised from within. The lack of internal security management typically results in hundreds, if not thousands, of potential vulnerabilities, which require a concerted remediation effort by both management and technical staff. Even when an organization acknowledges lax internal security, there may be no apparent way to stimulate the corporate agendas necessary to correct it.

Psicurity’s iNVA provides the first step toward mitigating internal risks by discovering, identifying, and prioritizing the most critical internal risks.

Psicurity’s detailed documentation simplifies the daunting process of internal security by summarizing the steps of remediation. Psicurity's "exception reporting" methodology provides accurate and highly readable documentation, clearly identifying risks without excess technical detail.

Keywords: Security Management

Contact Psicurity

Email - none provided

Print this page

Other products and services from Psicurity


wireless Network Vulnerability Assessment (wNVA

Psicurity’s Wireless Network Vulnerability Assessment uses the techniques of wireless attackers to determine the potential vulnerabilities of your wireless network. Despite the increased public awareness of wireless security risks, there has never been a greater need to enforce strong wireless security standards. Wireless attackers are often able to breach Wi-Fi networks located miles away from the comfort of their own car.


Psicurity - Social Engineering

Psicurity performs Social Engineering Assessments that reveal the inherent threats to an organization’s “social firewall,” while providing a documented basis for new policies and employee education. Social engineering is one of the most over-looked and ignored vulnerabilities, because it is difficult to detect and prevent without enforcing rigorous policies and employee education.


Psicurity - Web Applications

Web application vulnerabilities are easily overlooked by programmers who must view the same code each day, and often their job does not specifically require attention to such details. For customers who require the utmost in web application security, Psicurity provides Gray Box testing, which is a combination of external application testing and internal code review.


Psicurity - Industry Compliance

One of the greatest challenges an at-risk organization must face is how to organize the people and processes necessary to continuously maintain compliance with industry best practices. Our unique approach to management consulting helps foster the organization-wide consensus necessary to implement an Information Security Management System, as prescribed by ISO.


external Network Vulnerability Assessment (eNVA

Psicurity’s external Network Vulnerability Assessment provides customers a picture of their network security from an external attackers perspective. Our "white hat" team of intrusion analysts examine externally networked systems "in the blind," and generate a Target Map of the network “attack surface.. Fulfills the requirement for regular penetration tests, as required by official compliance regulations, such as SOX.


Psicurity - Assessment Overview

Our documentation provides immediate summary material for management staff, including in-depth technical details, and a customized Solutions Guide to help your IT staff quickly and effectively mitigate risks. So many automated programs are searching for victims that computers can expect to survive only five minutes before being attacked, and will withstand the attacks only if they are configured securely.