> Security Auditing - Open Source Solutions : Open Source Solutions

Security Auditing

Open Source Solutions’ security engineers are experienced in assessing the vulnerability of your information system to all classes of external and internal security breach. Open Source Solutions can deploy remote, automated security analysis software for quickly and economically uncovering a wide variety of technical security gaps that can be detected via the Internet. Open Source Solutions’ advanced security audit consulting services, which can be provided by security professionals with CISA, CISM, CISSP, ISSAP, or GIAC certifications, can help your business evaluate your procedures, operations, and governance policies and assess your IT infrastructure to enable you to design the highest level of security into your information system. Open Source Solutions’ security engineers can also test your web applications for security vulnerability and can conduct corporate-wide security audits to validate your company’s compliance with major security standards including HIPAA, FISMA, NIST, PCI, and ISO.

Open Source Solutions’ consultants are familiar with the use of auditing software such as Nagios, Microsoft’s Baseline Security Analyzer tool, GFI LANguard, NMAP Port Scanner, AMAP Application Scanner, EEYE Vulnerability Scanner, plus tools from Solar Winds tools, Metasploit, Netcat, Hydra, and Nikto, to perform a variety of automatic system scans to identify potential problems:

  • Check service pack levels
  • Check for mzissing security patches
  • Check for security alerts/vulnerabilities
  • Detect unnecessary shares
  • Detect unnecessary open ports
  • Detect new security holes using scan comparisons
  • Check for unused user accounts
  • Check password policy and strength
  • Make an inventory of your network
  • Detect potential Trojans on servers and workstations
  • Find out if the OS is disclosing too much information

    •  

    Security Compliance Testing

    Open Source Solutions’ certified security engineers can conduct extensive security audits of enterprise-wide security to determine your company’s compliance with key industry security standards including HIPAA, FISMA, NIST, PCI, and ISO 17799. Open Source Solutions’ consultants can also recommend and help you implement improvements to your security policies, processes and infrastructure in order to bring your organization in line with these exacting standards. By adhering to internationally recognized benchmarks of security, your business can assure management, partners, vendors, customers, and regulatory entities that your information system provides a trusted environment for industry and commerce.

    High-level Network Security Audit Consulting

    Open Source Solutions can provide the services of a CISA, CISM, CISSP, or ISSAP-qualified security engineer able to provide your company a comprehensive IS security audit. Progent’s security audit engineers offer a wide range of expert consulting services for small and midsize businesses and can deliver these services remotely anywhere in the U.S. or in person in key cities nationwide. Areas covered by Open Source Solutions’ security audit consultants include:

    • IS Audit Process
      Open Source Solutions can provide IS audit services in accordance with IS audit standards, guidelines, and best practices to assist your company in ensuring that your information technology and business systems are protected and controlled. Services available from Progent include:
    • IT Governance
      Open Source Solutions can help ensure that your company has the structure, policies, accountability, mechanisms, and monitoring practices in place to achieve the requirements of business-wide governance of IT.
    • Systems and Infrastructure Lifecycle Planning
      Open Source Solutions can help make sure that your management practices for the development/acquisition, testing, implementation, maintenance, and disposal of systems and infrastructure will meet your company’s objectives.
    • IT Service Delivery and Support
      Progent can help provide assurance that your IT service management practices will ensure the delivery of the level of services required to meet your company’s objectives.
    • Protection of Information Assets
      Open Source Solutions can make sure that your security architecture (policies, standards, procedures, and controls) promotes the confidentiality, integrity, and availability of information assets.
    • Business Continuity and Disaster Recovery
      Open Source Solutions can help ensure that in the event of a disruption your business continuity and disaster recovery processes will ensure the timely resumption of your IT services while minimizing the impact on your business.

     

    • How We See Things

      Our goal is to help you realize your Open Source strategy. We have the experience and dedication needed to ensure your Open Source stack is efficient, stable and productive.

      Our philosophy is that your IT infrastructure shouldn't be a burden, it should be a differentiator. We participate in many Open Source projects and are dedicated to supporting Open Source, while realizing that current business needs sometimes necessitate the use of proprietary applications.

      We offer a variety of services and have the ability to implement, configure, support and optimize a wide assortment of Open Source technologies.

      Let Open Source Solutions bring your online presence to the next level.

    Technology Development

    Open Source Solutions' UNIX/Linux support services provide small to medium sized companies and developers assistance with managing and servicing UNIX and Linux networks that may coexist with Microsoft environments.

    OSS provides your company the services of UNIX/Linux support professionals, certified Microsoft engineers, and security experts. This wide range of knowledge offers you a readily available one-stop source to assist you to create and maintain a safe and robust multi-vendor network and communications solution that blends Windows with leading variants of UNIX including:

    • Apple/Mac OS X

    • Red Hat

    • Fedora

    • CentOS

    • Ubuntu

    • Debian

    • Gentoo

    • FreeBSD

    • SCO

    • Suse

    • Mandriva




    Technical Services

    Here are a few of our services:


    • Remote server administration
    • Co-located/remote hosted server management
    • System troubleshooting & debugging
    • Network management (LAN/WAN)
    • Disaster recovery
    • Security auditing & hardening
    • Software installation & configuration
    • File & directory services, NFS
    • Kernel rebuilds & module management
    • Backup planning & implementation
    • Emergency support (24/7)
    • Internet Support & Management
    • SSL
    • Sendmail, Qmail, VpopMail, POP, IMAP
    • DNS-BIND (Bind8, Bind9, Balancing)
    • FTP, Virtual FTP servers (Proftp, WU)
    • Load Balancing/Clustering
    • OpenSSL-OpenSSH-Stunnel
    • Anti-Spam, Anti-Relay SPEWS-ORBS
    • IPtables-IPchains configure and tuning
    • DHCP & TCP/IP Management
    • IP Masquerading & NAT
    • LPR & Print services

    Read More!

    Business Continuity & Disaster Recovery

    Open Source Solutions' Disaster Recovery Services and High Availability Technologies experts offer a broad range of services that can help small businesses to medium sized businesses create a viable business continuity plan and a highly fault-tolerant network environment by providing expertise in these critical practice areas:

    • Disaster Recovery Planning
    • 24x7 Internet Access
    • Failover Clustering
    • High Availability Load Balancing
    • Non-stop Data Centers
    • System Center Data Protection Manager Backup and Recovery Consulting and Support Services

      • For businesses of any size, network downtime is costly whether it is due to unexpected breakdowns or scheduled maintenance. Enterprise networks have for a long time utilized processes and technologies that minimize the chances of network failure, expedite the recovery process in case of a catastrophe, and eliminate maintenance-related downtime.

      For small businesses, however, disaster recovery planning, fault tolerant network architecture, and non-disruptive maintenance solutions have all seemed too expensive to implement and too complex to manage. This has changed.

      Read More!