The integration of enterprise applications can create significant corporate value, but just getting those applications to work together is not sufficient. The value that is created can be destroyed by the complex web of interconnected security vulnerabilities that are inherent in a network of integrated applications.

OnlineSecurity’s Application Security Assessment (ASA) Service goes beyond traditional system integration to identify, mitigate, and remediate the unique security vulnerabilities created by the interactions of the specific set of applications and hardware installed on the client's network.

Service Description:

• Network security vulnerabilities are unique to the specific mix of installed components on a network. Consequently, OnlineSecurity customizes each ASA to the specific needs of the client. Typical components of an application security assessment include:

             - Inventorying all documented and 
               undocumented software and hardware 
               installed on the network.
             - External ASA emphasizing internet
               based security threats including hacking,
               viruses, and DOS.
             - Internal ASA emphasizing authentication, 
               access control, and data integrity.
             - Technical ASA including code audits, 
               operational reviews, and “ black box 
               testing” for custom applications.

• An ASA may be one component of a more comprehensive security assessment which may also include penetration testing, policies & procedure review, and network security implementations.

Delivery Mechanism:

• OnlineSecurity will meet with the client to determine the scope and goals of the assessment and prepare a proposal and/or work plan accordingly.
• The majority of the assessment work will occur at the client’ s location and will require that OnlineSecurity have the cooperation from, and access to, key technical and leadership individuals within the organization.
• Portions of the assessment will occur remotely, OnlineSecurity will be in constant communication with the client prior and during any external security assessments to assure minimal impact on operations.
• OnlineSecurity will synthesize the assessment findings with information from on-site interviews to create the assessment report.

Deliverables:

• OnlineSecurity will provide to the client a detailed assessment report encompassing the client’ s security posture and threat environment, vulnerabilities discovered and their implications for the organization, and recommendations to secure the organization.

Contact
Phone:  310-815-8855 ext 212 / Fax:  310-815-8808 / Email: info@onlinesecurity.com