Since 1994

Services

Network Security Management

Managed Firewall / IPS Managed IDS / NSM Vulnerability Management

Enterprise Security Assessment

Vulnerability Asesments Penetration Testing

Regulatory Compliance and Governance

PCI Compliance / Audit
Sarbanes-Oxley

Enterprise Security Assessment and Penetration Testing

Enterprise Network Security

The frequency of threats and incidents perpetrated by remote hackers abusing the Internet as well as disgruntled employees looking to hurt their employers continues to increase. Unfortunately, the security of internal trusted networks and external network access points often have not been given the attention it deserves. To ensure that network security controls and management processes are properly implemented, Ra Security Systems takes a holistic approach to performing vulnerability assessments and penetration testing.

There are three main stages:

• Identify deficiencies
• Get to root causes
• Prescribe effective remediation

Typically, the test is started from a position of least knowledge about the client’s systems and networks as they appear from an external perspective. Using the Black Box methodology, Ra assumes the role of a malicious external user, with no previous knowledge of your network structure or security plan. The Black Box methodology simulates a malicious external user exploring your externally accessible infrastructure with hopes of gaining entry to your internal assets.

As the test proceeds, Ra works with internal staff to move from a position of zero knowledge to a position of limited knowledge, to a position of full knowledge. As each perspective changes, snapshots of the network security are recorded.

Web, Application and Network Penetration Testing

Network security is only part of the picture. Securing the internal and external networks is only the first step. For complete protection, both web applications and internal applications need to be secure. Externally accessible applications, web sites for example, represent the largest threat. Application development typically includes functionality and performance testing, but rarely security testing. For that reason, applications should be tested by security experts.

There are three major areas of application testing:

• Application Design and Access Assessment
• Application Penetration Testing
• Code Reviews
• Wireless Network Testing
• Physical Network Testing

 

Products

Managed
Firewall / IPS

Managed IDS / NSM

Wireless Monitoring

Vulnerability Management

Blackhole DNS

External Service and Content Monitoring

Log File Analysis

Host Intrusion Detection