Vulnerability Assessment & Penetration Testing

Vulnerability Assessments

Scheduled vulnerability scans of your network will aid in the identification of weaknesses, gaps, and common configuration errors that an adversary could use against you.

We work with our clients to understand not only the technical aspects but also the business criticality of the systems assessed.  By assessing systems in their full business context, you can then prioritize resources, set expectations, and address risks to the business in a sound manner.

Risk based vulnerability assessments, built on sound processes  and procedures ensure not only that regulatory and compliance needs are met, but also your organizations unique needs and concerns are addressed as well.

Penetration Testing

Commodity penetration testing services that treat penetration testing as a “one size fits all” don’t work.  A penetration testing engagement is just as unique and varied as each client environment we work in.

At The Rubicon Advisory Group we seek to understand what the organization is attempting to accomplish, scoping the engagement to meet those specific needs.  We work with our clients to ensure that they receive the full value of their penetration test.

At The Rubicon Advisory Group our Vulnerability Assessments and Penetration Tests are based on recognized frameworks such as the Open Source Security Testing Methodology Manual (OSSTM) , Information System Security Assessment Framework (ISSAF) and the Penetration Testing Execution Standard (PTES).

Regulatory and statutory requirements

  • Payment Card Industry Data Security Standards (PCI DSS) Requirements
  • International Organizations for Standardization – Information Security Management System(ISO/IEC 27001)
  • Health Insurance Portability and Accountability Act (HIPAA)
  • 201 CMR 17.00 (Massachusetts Protection of Personal Information)
  • Federal Financial Institutions Examination Council (FFIEC)

Interested in scheduling a Vulnerability Assessment or Penetration Test? Then please call us at (855) 4-NO-RISK to start the process.