|
SECURITY AUDIT is a SYSTEMATIC, measurable technical assessment of how the organization's security POLICY is employed.
Even today, it is possible to find a number of organizations where a WRITTEN SECURITY POLICYdoes not exist. Security policies are a means of STANDARDIZING security practices by having them codified and AGREED to by EMPLOYEES who read them and sign off on them. When security practices are UNWRITTEN OR INFORMAL, they may not be generally understood and practiced by all employees in the organization.
It must be kept in mind that as organizations evolve, their security structures will change as well. With this in mind, the computer security audit is NOT A ONE-TIME TASK, but a CONTINUAL effort to IMPROVE data protection.
The audit measures the organization's security policy and provides an analysis of the EFFECTIVENESS of that policy within the context of the organization's structure, objectives and activities.
AXOSS SECURITY AUDIT service includes an assessment of CRITICAL assets and HIGH-RISK information, POLICY AND PROCEDURES, security standards and training, hardware and software, and security roles and responsibilities.
Axoss Security Audit service is IDEAL for organizations wanting an INDEPENDENT AUDIT of their information security posture.
In a security audit we are your DEFENDER, not your attacker. You show us your system - what it does, how it works - and we take it under an IN-DEPTH SECURITY ANALYSIS. The more insight into the system you can provide, the more exhaustive our analysis can be. |
|
|
