System Hardening Review

The servers and client workstations deployed throughout an organization protect the confidentiality, integrity, and availability of sensitive information assets. The manner in which these systems are deployed play a key role in information security. Well planned and standardized hardening procedures and standards, patch management, file system access control, and user access control are several of the areas that are reviewed as part of system configuration security. Halock will evaluate the configurations of key client and server systems to ensure proper hardening and security configurations. Each system is evaluated using a combination of software tools and manual hands on review techniques, aimed at identifying security risks connected with the configuration of the operating system and related services. Understanding each users' access, whether or not the have the minimal access required to perform their job duties, and if the configuration of the security mechanisms of the system are reviewed to ensure the controls enforce appropriate access.

Solution At-a-Glance:
  • Evaluate access control and ensure principles of least privilege are utilized
  • Evaluate file system security and permissions
  • Ensure system configuration adequately protects information assets and does not introduce vulnerabilities into the environment
  • Test the operational effectiveness of security policies, procedures, and standards
  • Verify deployed systems comply with security requirements as well as internally defined corporate standards
  • Insure access and user activities are adequately monitored, controlled, and limited to the least privileges necessary

Network Device Hardening Review:

Using a combination of analysis tools and manual reviews, Halock will analyze the configurations of network devices such as core routers, network switches, and firewalls to identify security risks and evaluate adherence to security best practices.

System Hardening Review:

Halock evaluates the configurations of key client and server systems to ensure proper hardening and security configurations. Each system is evaluated using a combination of software tools and manual hands-on review techniques, aimed at identifying security risks associated with the configuration or the operating systems and related services.