Infrastructure Security

Protecting your Company and your Customer’s data in the 21st Century means leveraging complex technologies and dedicated personnel.

Technology may have paved the way for some incredible advancement in business but technology carries its share of risks as well.  Infrastructure Security is now a highly growing segment of the technology world.  For business owners and managers this means having to develop a complicated but flexible plan to defend against the variety of security threats that exist and will exist.  Chess has found however that business owners and managers would prefer to focus on their core business competencies and don’t have the time or energy to develop the comprehensive plans needed to protect their infrastructure and their customers data.

The good news is that business owners and managers should dedicate themselves to the core business practices and leverage a technology partner to implement best practices for infrastructure security.  The best technology partners will have access to and implement proven security strategies as well as actively test security layers based on industry standard testing methodologies such as the Open Source Security Testing Methodology Manual or Information Systems Security Assessment Framework.  Further development of your company’s infrastructure through Vulnerability Assessment, Policy Compliance, Threat Intelligence, and user training will provide the needed backbone ensuring a reliable and secure technology infrastructure.

What Threats require us to Remain Vigilant?

Why is your anti-virus not a complete solution?  Viruses, Worms and Trojan horses are only some of the security risks that companies encounter in today’s technology environment.  Most people are familiar with viruses enough to know that they are bad but what are the actual concerns?

• Viruses & Worms:  These are tiny applications that typically replicate once embedded on a system.  The can be network aware and they can spread easily throughout an entire network if systems are not protected against these malicious threats.
  
  
• Trojan horses & Rootkits:  These are snippets of code that are designed to wreak havoc on a system or designed to allow for automated or remote control of a system for malicious use.  Typically these code snippets can gather information and deliver it to the designer in some fashion.
  
  
• Spam & Spyware:  Unwanted junk mail and malware designed to collect user information.  These items are very prevalent in today’s technology infrastructure.
  
  
• Directed Threats:  Hackers, a term over used and under-appreciated, individuals and groups can participate in offensive attacks of an infrastructure both internally and externally.  The goal is to obtain access to a system and then retain access for malicious intent.  These directed threats occur more often than companies know about or think about.