Netanium Network Security

Contrary to popular belief,
Ignorance is not bliss, and what you don't know can hurt you.

The Problem

Our culture has reached a point where Internet access is not only a part of life, but it's expected to be there everywhere we go, even while we're at the office or school. What's more, the average user now has a greater understanding than ever before of just what resources and tools are available to them. Web access and e-mail are old-hat, and now the number of people using Instant Messaging, Peer-to-Peer File Sharing, Streaming Media, and other applications once considered "complicated" is staggering.

We all try hard to get a handle on it, but too much is being missed. The majority of Information Security and Information Technology organizations have taken steps to protect the perimeter of their networks. Many have also addressed internal security, realizing that there are significant threats to security, both accidental and malicious, originating from within. Threats or attacks specifically targeting servers and other internal systems can be dealt with using measures like firewalling, segmenting, and intrusion prevention, or proactively with patch management.

However, the standard methods of securing ourselves address the "standard" threats. The threat of Content needs to be fully understood, and then addressed. The flow of information that is malicious, illegal, inappropriate, or just plain undesired needs to be stopped. However, since most organizations don't know exactly what content threats they are being bombarded with, or are vulnerable to, they are either ignoring them or simply unable to figure out how to control them.

This is where CAVAS can help!

The Solution

CAVAS - The Pro-Active first step in controlling your content.

The goal of CAVAS is to provide an organization with deep insight into the state of their content security and vulnerability. This deeper insight allows groups to better utilize existing resources to avert problems before they happen.

CAVAS engineers start by making inquiries as to the policies in place within an organization. We ask what types of content are expected, desired, or unwanted.

Next, we begin an analysis of current traffic types and internet activity. This involves in-depth, non-intrusive monitoring of live traffic to determine the protocols, data, and destinations being served.

The final discovery process is to verify current content controls, or lack thereof. Engineers test a large sampling of content types, protocols, and destinations to see just what a typical user can do. The goal is to discover what users could do if they tried, and how they may be able to subvert existing solutions to the content problem.

The resulting deliverable of a CAVAS engagement is a detailed report containing specific information on content-related vulnerabilities uncovered by our engineers. The report is broken into sections showing varying degrees of low-level detail and high-level summary. The beginning sections are most helpful in relating the state of the network to upper management, in a clear and non-technical way. This gives anyone the ability to comprehend what ill-effects are or could be realized. The later sections of the report provide remediation advice and suggestions. We identify ways to improve content controls and get closer to enforcing the desired policy by re-configuring existing solutions, or adding specific solutions where needed.

In general, CAVAS is the pro-active way to provide your organization with deep insight and actionable steps toward controlling the content of you network.

The Next Step

Take control of your content and let us help look beneath the surface of your network. Call us now at 978-888-0091, e-mail cavas@nnsecurity.com, or fill in the form below. We look forward to working with you.