Security

Firewalls

A firewall is often your company's first line of defense against computer hackers. Firewalls restrict access to network resources, making them much more difficult to attack. A firewall can protect your computers by preventing an attacker from getting to them in the first place, as well as by preventing a compromised system from being used to attack other computers.

At GlenForest Consulting we work with firewalls from a variety of manufacturers including CheckPoint, Cisco, NAI, Axent, NetScreen and others.

Intrusion Detection Systems

Intrusion detection systems act like an alarm for your network. An IDS lets you know when someone is attacking your network and can provide information critical to stopping an attack and catching the attacker.

To be effective, an Intrusion Detection System has to be carefully chosen and tuned for your network. We work with Intrusion Detection Systems from companies like Enterasys, Cisco, NAI, ISS and many others.

Virtual Private Networks

If your company has several offices that need to be connected then you have two choices. You can connect your offices with costly leased-lines or you can choose a VPN solution.

VPN's are a reliable, cost-effective way to securely link two or more office networks together. You can choose from several different encryption levels, speeds and price points. We work with products from Vendors such as CheckPoint, Cisco, WatchGuard, TimeStep and others.

Public Key Infrastructure

Public Key Infrastructure (PKI) is a system of digital certificates used for encryption and authentication purposes. PKI can be used to encrypt your email, authenticate users and for other important tasks.

Public Key Infrastructure provides a secure, flexible and scalable means of protecting your company's resources. PKI is a complicated technology and we have chosen to work with one our partner's in this area. For more information about PKI and our service offerings please contact us.

Security Audits

Security Audits help your company locate defensive weakenesses and figure out how to correct them. Audits start with an overall network evaluation, generally followed by individual system investigations. The final result is a comprehensive report which your company can use to truly increase the security of your computing environment.

Penetration Testing

Penetration Testing, also known as Tiger Teaming, involves a mock attack on your computer networks from the point of view of an outside attacker. The advantadge of penetration testing is that it can give you a much more realistic idea of just what vulnerabilities your network has. This sort of real world test allows you to concentrate fixes where they are most critical, instead of wasting time patching possibly non-existent holes.

PDD 63 Audits

May 22, 1998

William Jeferson Clinton signs Presidential Decision Directive 63 (PDD-63).

PDD-63 outlined the key elements of the administration's policy on critical infrastructure protection. The main goal of this plan was to strengthen America's information security defenses against the new threats posed by so called "Cyber Terrorism."

PDD-63 deals with the critical infrastructure of the United States. Critical infrastructure includes the networks and computer systems that the US depends on to function. Federal departments and agencies have already begun identifying and securing critical assets that they depend on to fulfill their responsibilities of national security, economic stability and public health and safety.

PDD-63 is a recipe for ensuring the information security of our nations critical assets. This recipe is based on a formal methodology developed by the National Security Agency and includes identification of critical information, risk assessment, identification of vulnerabilities and plans for remediation. The process begins with initial vulnerability assessment and is followed by periodic reviews.

After the initial assessment, a company would proceed to correct any problems with their current security infrastructure. Evaluations are repeated until all of the security concerns are addressed.

Industries affected by PDD-63 include:

• Finance and Banking
• Law Enforcement
• Mass Transit (Rail, Air, Bus and Highway systems)
• Utilities (Gas, Water and Electric)
• Health and Hospitals
• Communications

Our people were some of the first to be trained by the NSA to perform PDD-63 audits. We have a built a robust methodology that we use to perform all of our audits. Our methodology allows us to provide you with a reliable audit that you can count on.