IT Audit and Compliance Services for Financial Institutions

Network Vulnerability Assessment

To better service the compliance and audit needs of our customers, Lighthouse Computer Services has established a strategic partnership with Compass IT Compliance, LLC. The members of Compass IT Compliance, LLC are highly experienced and certified, and the company’s managing partners were formerly senior consultants within the Lighthouse IT Compliance Group.

Identify security vulnerability through detailed network vulnerability testing.

Compass IT Compliance’s External and Internal Network Vulnerability Assessments identify what services your hosts are offering, and whether or not the policies and procedures associated with them are in line with industry and company standards for security. Their Network Vulnerability Assessment services provide vulnerability management through comprehensive network security testing and analysis of the following:

• Identify applications and services on host
devices such as DHCP, TFTP, and DNS.

• Review communication protocols that are
active on the system.

• Review industry sources for notices of known
network vulnerabilities on host-based OS.

• Review the configuration and network diagram
of all network-related devices that are exposed
on the perimeter of the network.

• Identify unneeded services on network device
such as DHCP, TFTP, DNS and small servers.

• Provide recommendations for securing
networking devices.

• Review CERT notices for known vulnerabilities
of network equipment.

• Document all findings and recommendations
for use in the final Network Vulnerability
Assessment report.

• Perform a Desktop Review of physical and
logical functions.

• Provide guidance on how to remediate any/all
issues identified.

For more information, or to schedule a consultation, please visit Compass IT Compliance, LLC, or call Compass at 888-246-7594.