Security Assessment
Security has been identified through surveys as the number one concern that users have with the use of the Internet. Organizations have a duty to assure to their "stakeholders" - Board of Directors, Shareholders, and Operational Management that the Organization has done all that is possible to assure that their Internet offering is secure.
To perform a security assessment a Risk Management Methodology will be followed. The methodology can include document review, interviews and actual security testing where appropriate.
Security assessments should address the following 4 categories:
- Procedural Measures
- Personnel Measures
- Physical Measures
- Technical Measures