fbpx

STRATEGY & PLANNING

We help leaders develop a cyber-risk program in line with the organization's strategic objectives and risk appetite.

Overcome barriers to effective IT security by separating fact from fiction

As organisations increasingly link more and more of their operational processes to their cyber infrastructure, effective cyber security is key to an organisation’s ability to protect its assets, including its reputation, intellectual property (IP), staff and customers. For organizations, particularly those that retain financial and other sensitive company and customer data, cybersecurity is critical, as the results of a network breach could be catastrophic.

Active Directory

Active Directory management is part of the server or network monitoring and management processes, which ensure that Active Directory is behaving as required and is always maintained up to date.

Business continuity planning

We understand how critical it is to find sustainable business process improvements in an ever-changing world. You streamline and automate your processes while complying with regulations and minimizing risks.

Data Recovery Strategy

Data recovery strategies include hot sites, spare or underutilized servers, the use of noncritical servers, duplicate data centers, replacement agreements, and transferring operations to other locations.

IT Director

Your IT Director will help you resolve issues such as supplier relationships, strategic planning, equipment purchases and special projects. Your IT manager will also ensure that customer support has everything to help you properly in the event of an adverse event.

Risk Management

Risk management is the identification, assessment and prioritization of risks followed by a coordinated and economical application of resources to minimize, monitor and control the probability or impact of unwanted events.

Threath Intelligence

Threat intelligence gives you a context that helps you make informed decisions about your security by answering questions such as who attacks you, what are their motivations and capabilities, and what indicators of compromise in your systems.

Strategy & Planning is just one of Secur01's four pillars of cybersecurity

Different service plans, for different needs. We adapt to your business.

Secur01 offers a variety of service plans to meet the diverse needs of its customers, depending on their size, industry and business objectives. Of course, it is also possible to create a tailor-made plan if none of the ones presented below suit your needs. All of our plans are designed to provide an excellent level of service, fast and reliable, which gives you access to our best experts. Our plans are described in detail, so there are no surprises. We document all of our processes so that our service is consistent and efficient. We are proud of our organization and our professionalism.

Frequently asked questions

Network auditing is a must for any organization. Networks are dynamic entities; they grow, shrink, change and divide themselves continuously. Network administrators cannot even assume this process is entirely under their control. Users add devices and sometimes even new hardware to the network infrastructure. Even worse, it is not the first time a user would install software they need without informing the administrator. These activities can have drastic repercussions on network security. To solve this, an administrator needs to perform regular network auditing and monitor any changes to the preset baseline.

Network auditing is a process in which your network is mapped both in terms of software and hardware. The process can be daunting if done manually, but luckily some tools can help automate a large part of the process. The administrator needs to know what machines and devices are connected to the network. He should also know what operating systems are running and to what service pack/patch level. Another point on the checklist should be what user accounts and groups are on each machine as well as what shares are available and to whom. A good network audit will also include what hardware makes up each machine, what policies affect that machine and whether it is a physical or a virtual machine. The more detailed the specification the better.

Once the machines running on our network are mapped, the administrator should then move to audit what software is running on each of the machines. This can be done manually, through an application, or simply asking each machine owner to run a script that would automatically catalogue applications and send the administrator an email with a report of the software installed. After the software inventory is done, the process can then catalogue the services which are installed, which are running and which are stopped.  The audit for the machines can be finalized by noting which ports each machine listens on and what software is actually running at the time of the audit.

Once the administrator concludes auditing the computers on the network, s/he can move on to cataloguing the devices. These can include printers, fax machines, routers, access points, network storage and any other device that has connectivity with the network. Once this is done, the network audit would be complete, but the data will now need to be analyzed. Is any machine running unauthorized software or hardware? Is any machine lacking necessary patches? After these and other relevant questions to each specific network are addressed and machines that weren’t up to standard are brought in line, the administrator now has an effective security/inventory baseline for all machines on the network.

Where should an administrator go from here?

So what can the information gathered through the network audit be used for?  Network auditing tools can be set to run an audit automatically on a schedule, for example every Friday. These weekly reports can then be used to monitor changes on the network, based on the baseline the administrator would have created, and report changes when they occur. The administrator can then enforce proper change management policies on the network.  He/she would also be able to detect and take action against unauthorized software/hardware that might potentially jeopardize the network’s security, or even put the company at risk of legal action as the user installing this software might not have the necessary licenses.

A regular security audit can potentially detect theft; some users might decide a fraction of the memory available on their workstation might be put to better use at home, for example. Another common case is when a user might think it wouldn’t be a problem if he/she bought and connected a wireless access point at work to have internet connectivity on his mobile phone. This process can also help the administrator know if users disabled the company antivirus or uninstalled any other security software on his system.

All in all, network auditing is important for any administrator. Networks change dynamically both through the actions of the administrator and without his or her intervention. Regular network auditing is the only way an administrator can keep up with changes to the network under care.

Toggle Content

Simplify

Simplify your IT by entrusting to our team of experts, who will find an answer to all your problems.

Protect

Protect your customers and staff from the growing cyber attacks on businesses of all sizes.

Secure

Secure your investment and sleep easy knowing that your business is cyber resilient 24/7.

We know your time is important. Get started with a provider that cares.

Secur01 is more than an IT Helpdesk. We are a partner to your success.

Free Consultation

We will call you in a moment