Neohapsis Core Services
Consulting
Network & Endpoint Security
Neohapsis' Network & Endpoint Security services include:
Perimeter Risk Evaluation
Neohapsis provides organizations visibility into changes in their perimeter operating environments and metrics to measure changing exposure levels. We perform a scheduled, re-occurring measure of perimeter exposure points using automated scanning technology.
Network Architecture & Design Review
Neohapsis reviews client's network criteria, assumptions, and design specifications to design secure and optimal network architectures. Network infrastructure and the associated access control and logging devices serve as the foundational components in securing a networked computing environment. Therefore, we help organizations design effective networks that align business requirements with risk tolerance levels.
Penetration Testing
Neohapsis provides an organization with real-world information risk management scenarios by determining if, and to what degree, an entity's network assets can be breached. During a penetration test we evaluate the process and technology by attempting to circumvent implemented controls to gain access to critical assets within a computing environment. From this, we provide an awareness-heightening tool for teams wishing to gain support of security-related initiatives, and provide additional levels of 3rd-party assurance for teams that are further along in the risk management life cycle.
Vulnerability Assessment
Neohapsis performs a combination of automated network-based scans and root-cause analysis to provide a snapshot view of an organizations endpoint security posture. This provides organizations with both a "moment in time" view of critical operating system vulnerabilities while also shedding light on the potential root-causes of any identified challenge areas. We then assist our clients in determining the effectiveness of their vulnerability management and patching processes.
Wireless Assessment
Neohapsis provides assurance that deployed wireless environments are compliant with policies and we provide visibility into wireless related risks. We identify and verify through wireless scanning technology an organization's wireless risks and exposure, as well as their compliance to stated policies and assumptions.
Hardened Host Assessment
Neohapsis provides efficient methods for lowering exposure profiles of critical systems without adding additional layers of technology. We perform "open book" configuration evaluations of an operating system, patch levels, and running services to make recommendations on how to lower risk profiles. Server security is frequently the last layer of security within an organization's defense-in-depth security model, as internal network segmentation and the principle of least privilege is not a common practice.
War-dialing
Neohapsis identifies rogue modems and devices that may be active and represent previously unknown risks. We perform an automated phone-based scan of a fixed set of phone numbers (DiD) to identify any known, unauthorized, and un-secured modems that could provide a point-of-entry into an organizations network.
Network Device Assessment
Neohapsis provides clients with pragmatic methods for lowering exposure profiles of both network devices and the endpoints that they serve. Our consultants review network device configurations (e.g. routers, switches, firewalls) to ensure that network device-centric risks are mitigated using optimal configuration settings.