HOME | SITEMAP | CAREER | CONTACT US  
 
   
 
 
 
 
 
Managed Services   Assessment Services |
Vulnerability Assessment
Vulnerability assessment is the process of identifying and quantifying vulnerabilities in a system. The system being studied could be a physical facility like a nuclear power plant, a computer system, or a larger system (for example the communications infrastructure or water infrastructure of a region). Vulnerability assessment has many things in common with risk assessment.
 
Assessments are typically performed according to the following steps:
 
1. Cataloging assets and capabilities (resources) in a system
2. Assigning quantifiable value and importance to the resources
3. Identifying the vulnerabilities or potential threats to each resource
4. Mitigating or eliminating the most serious vulnerabilities for the most valuable resources This is generally what a security company is contracted to do, from a technical perspective, not to actually penetrate the systems, but to assess and document the possible vulnerabilities and recommend mitigation measures and improvements.
Penetration Testing
 

There seems to be a certain amount of confusion within the security industry about the difference between Penetration Testing and Vulnerability Assessment, they are often classified as the same thing when in fact they are not.

Penetration Testing sounds a lot more exciting, but most people actually want a Vulnerability Assessment not a penetration test, many projects are labeled as penetration tests when in fact they are 100% Vulnerability Assessment.

A Penetration Test mainly consists of a Vulnerability Assessment, but it goes one step further..

A penetration test is a method of evaluating the security of a computer system or network by simulating an attack by a malicious hacker. The process involves an active analysis of the system for any weaknesses, technical flaws or vulnerabilities. This analysis is carried out from the position of a potential attacker, and can involve active exploitation of security vulnerabilities. Any security issues that are found will be presented to the system owner together with an assessment of their impact and often with a proposal for mitigation or a technical solution.
 
 
     
 
     
 
wt wt wt
<>IBM - PARTNER WORLD MEMBER; <>            <> HP- BUSINESS PARTNER; <>            <> EMC- AUTHORIZED SERVICES NETWORK PARTNER; <>            <> IBM - PARTNER WORLD MEMBER; <>            <> BUSINESS PARTNER; <>            <> CISCO- PREMIERE CERTIFIED PARTNER; <>           <> JUNIPER- J PARTNER; <>            <> AUTHORIZED SYSTEM INTEGRATOR; <>            <> BOSCH- BUSINESS PARTNER; <>            <> HONEYWELL- BUSINESS PARTNER; <>            <> APC- REGISTERED PARTNER; <>            <> EMERSON- NETWORK SOLUTION PARTNER; <>            <> TCS- CLOUD SERVICE PARTNER; <>            <> PITNEY BOWES- SOLUTION PARTNER; <>            <> BSNL- CHANNEL PARTNER; <>            <> BSNL- AUTHORIZED SYSTEM INTEGRATOR; ********///
 
 
CORPORATE | IT SERVICES | SOLUTION DOMAIN | AWARDS & EVENTS | STRATEGIC ALLIANCES | PRESENCE & CONTACT
© Wizertech Informatics. All right reserved

Valid CSS!

Valid CSS!