Security Assessments

Second Factor, Inc. (SFI) offers security assessments of production and pre-production systems.  We leverage a variety of tools to inspect systems, interrogate network services, and ensure that servers are running only those services necessary to satisfy mission requirements.  We also review hardening procedures and templates and advise on improving procedures and templates for both organizational and individual server deployment.

Our team's expertise in network vulnerability scanning tools include the following:

• Foundstone
• Nessus
• Metasploit

Our team takes a Defense in Depth approach to examining systems. As a part of our assessments, we also examine physical security, review security policies and procedures, verify firewall rule sets, router and switch configurations, and IDS/IPS configurations.