Security Vulnerability Assessment:

A Vulnerability Assessment actively identifies & priorities weaknesses or security holes in a computer system of network. Unlike a Penetration Test, there is no active simulation of an attack against the system or network, it only identifies and classifies the vulnerabilities found.

Vulnerability Assessments can assist your organisation in a variety of ways such as:

1. Creating a list of high to low vulnerabilities that will allow you to see the impact of such flaws in the system
2. Identifying vulnerabilities that may be difficult or impossible to detect (often known as zeroday attacks, non public exploits) which automated scanners will fail  to detect
3. Provides a procedure change or software fix to rectify the vulnerability
4. No active intrusion is attempted by our staff, ensuring systems will remain unaltered
5. Reporting and Assessments provide evidence required to seek additional investments to improve overall business security

Vulnerability Assessment Phases / How it works

Planning Phase - The assigned SA Systems security consultant will work with you to ensure you are happy with the vulnerability assessment plan, and that you understand how the procedure will work. The security consultant will also ask about any core services & applications you wish to be extensively tested.

Vulnerability Assessment Phase - The start of the full vulnerability assessment that scans and probes services & applications for intelligence gathering and fingerprinting purposes. Each IP address scanned will be assigned a security rating indicating which appears to be most at risk, until a global IP map is made of the organisations network. The intelligence gathered is then assessed further and categorized into high and low severity levels.

Documentation Phase - As the testing progresses and vulnerabilities are discovered, the security consultant will documents all test findings. Should a critical vulnerability be found this will be marked as high severity and you will be notified of this immediately with a recommended solution and time-frame to implement.

Reporting Phase - Once the Vulnerability Assessment is completed, you will receive a full report through our secure client portal, where you will have the results explained to you by the security consultant who worked your case.

Remediation Phase - You are taken through how to mitigate the vulnerabilities discovered. This can be done in variety of ways, typically by patching, altering a process, implementing a code fix or even replacing a computer system entirely. Our security consultant will go through the scenarios of a potential compromise allowing you to determine the levels of risk to business continuity.

Available Vulnerability Assessments:

SA Systems Vulnerability Assessment

Security consultants will perform the above outlined phases of planning, intelligence gathering, vulnerability assessment and reporting to establish weaknesses in your computer systems or networks.

Is a Vulnerability Test right for you?

Please get in touch today to discuss your security requirements.

Phone Us: 0845 862 1052
Alternative Contact Information