Security Assessment
The main components of any security assessment are confidentiality, integrity and availability (CIA) - three pillars of information systems security.
Security Assessment comprise of the following aspects of information systems:
-
Security Review : This involves identifying security vulnerabilities and weaknesses in IT systems and business processes. It helps in understanding the current security posture and identifying areas for improvement.
-
Application Security Assessment : This evaluates the functionality and resilience of an application to known security threats. It analyses all components of an application infrastructure.
-
Enterprise Security Assessment : This is a comprehensive review of an entire infrastructure, including host, network, application, and environmental controls. It also includes a review of existing policies and procedures.
-
Risk Assessment : A risk assessment identifies, assesses, and implements key security controls in applications. It focuses on preventing application security defects and vulnerabilities and helps organisations make informed resource allocation and security control implementation decisions.