Securing the U.S. against cyber attacks has become one of the nation’s top priorities. To achieve this objective, networks, systems, and the operations teams that support them must vigorously defend against external attacks. This also rings true for the commercial sector as more than 70 new vulnerabilities are found each week in commercial applications – and many more have been exploited without public recognition in custom applications written by programmers from individual sites in government, commercial, and private enterprises.

Following the loss of a laptop and an external hard drive, a large government agency needed to change their information security program to reduce the risk of future incidents involving data loss, and to address overall information security weaknesses. The incident was a “wake-up call” to many people because of the relative ease with which millions of sensitive records were placed at risk.

[Open or download attachment below to view case study]

To date, Memory (Random Access Memory) forensics has been largely ignored by computer crime professionals due to a lack of effective tools and training. Today if you want to perform a “Complete Computer Investigation”, you must supplement traditional disk based forensic processes with memory forensics. Why is it important to investigate computer main memory? Data that exists in RAM can help an investigator determine the true state of a computer at the time of acquisition. Items such as memory resident malware, passwords, and digital conversations are often present solely in memory.

For today’s computing environments, there is little question that endpoint security is a required component of an overall enterprise security strategy. On one hand, various trends fostering user mobility ensure that many endpoints will frequently be exposed directly to the Internet. On the other hand, even when they are operating on the LAN, endpoints are still being exposed to numerous threats, both from other internal sources as well as from external sources that are all too often demonstrating the ability to penetrate or otherwise circumvent an enterprise’s perimeter defenses.

Sales organizations are often the most mobile segment of your employee workforce. Sales people travel to meet with clients and develop business opportunities, sometimes crisscrossing a region several times a week. For these employees to work remotely they need a secure and reliable connection back to the corporate network to exchange customer data with internal corporate departments and their clients.

The growth in financially motivated, targeted threats has driven the need to augment standard vulnerability assessment efforts with penetration testing. For many organizations, using external consultancies to conduct periodic penetration tests will be the most appropriate approach. Organizations with sufficient technical capabilities and mature vulnerability assessment programs, and those that use commercial or open-source, penetration-testing tools, can provide higher levels of security and quicker reactions to changing threat environments.

ProveIT case studies provide government end users with assessments of IT solutions. Our methodology enables impact assessments to be comparable, consistent, and independent. Working with government and vendor personnel directly involved in the project, Government Insights analysts gathered relevant information on the project and provided our analysis of the approach, the solution’s success in meeting the organization’s stated goals, and the project’s impact on return on investment, risk, innovation, and transformation.

Working very closely with Secure Network Innovation, Inc. (SNI), an MSSP and leading provider of multithreat security systems that enable secure business communications and deliver the best security, performance and total cost of ownership available, Army Dugway Proving Ground selected Fortinet appliances to secure a new wired and wireless outdoor network.