An office furniture supplier realized they were
very dependent on Internet technology for their business operations, and a
planned e-commerce initiative would only increase
their visibility and exposure to the inherent risks of the Internet.
They had implemented general border security
and recommended system
patches, but wanted an outside opinion to take a fresh look
at their systems.
DBM Associates was engaged to perform an in-depth
audit of their network infrastructure, server configurations and overall
security strategy. DBM met with the customer and discussed their existing
strategy and procedures, then carefully scrutinized the configurations of all
their Internet-accessible systems, network devices, and entire IP range. We
compared configurations against industry best practices, tested for missing
and misapplied patches and security settings, and performed a wide range of
penetration tests. The final report summarized the client's overall security
posture and status, and described several areas that needed improvement or attention,
along with risk assessments and suggested courses of action for each
vulnerability.
The client, somewhat surprised by the work that needed
to be done, used DBM�s report as a blueprint for their internal staff to
enhance security through a combination of architecture changes, procedure
improvements and infrastructure reorganization. Follow-up
consultations assured them that they had met their
security objectives.
"DBM has ensured and continues to
ensure that our systems are protected from external attack. From beginning to
end, DBM displayed extensive knowledge and expertise in identifying problem
areas. More importantly, they shared their knowledge and expertise with our
internal staff to make them more aware of vulnerabilities."
