ATSEC INFORMATION SECURITY OFFERS EXPERTISE ON
A WIDE RANGE OF IT SECURITY SERVICES AND SOLUTIONS
|
 |
|
| |
Product
Security |
|
Organization
Security |
|
System
Security |
|
Network
Security |
| Standards |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| Services |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Education
and
Training |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| Solutions |
|
|
|
|
|
|
|
|
|
|
z/OS PENETRATION TESTING
What atsec offers
atsec consultants conduct technical in-depth penetration tests for banking, telecommunications, and industrial enterprises. To offer the widest possible range of solutions, our consultants first define the attack profiles most appropriate for your organization. We provide methodology-level advice about planning and executing penetration tests in cases where very specific knowledge is required to analyze and present the results.
Our mainframe operating system penetration testing uses a four-step process to exploit your mainframe either via authorized access or by compromising access control mechanisms:
1) Organizational Review - to obtain an overview of the operational environment and security infrastructure, as well as establish project working protocols and goals.
2) System Audit - to further understand, in depth, the system configuration, enabling identification of potential vulnerabilities in the configuration. The audit identifies areas to potentially exploit for penetration.
3) Penetration Test - perform manual and automated penetration tests based on the acquired knowledge of the environment obtained in the previous steps and industry standard methods.
4) Security Impact and Recommendations - provide security impact statement and recommendations. These recommendations can be used as input to a risk assessment plan in order to implement recommended corrective actions.
Why our services are important to you
z/OS penetration tests are deployed to assess the technical security of a single system, a large complex network, or a specific application from an attacker’s point of view.
Even a well planned infrastructure design does not prevent the technical implementation from containing vulnerabilities. Those vulnerabilities can only be reliably detected by penetration testing, where extensive knowledge and experience are used to search for erroneous configurations and flaws in the programming.
Regular penetration tests are an appreciated measure to guarantee a current overview of your company's security. Deficiencies in organizational processes for intrusion detection and reaction can be identified. Penetration testing shows whether a company's security policy is a living document or just another piece of paperwork.
For more information
If you are interested, please contact info@atsec.com for further information.
|
