In today's world, the importance of security in all aspects of business is increasing on a daily basis.
The area of computer and network security is no exception.
Obviously, every business should be concerned about security. However, just as with bricks & mortar security,
IT security needs vary widely between different businesses. Therefore, the first and most vital step in improving
any organisation's computer and network security is a thorough analysis of the specific security needs of
that organisation (and of the efficacy of existing security measures in meeting those needs).
Whilst most off-the-shelf "security products" on the market today are at least reasonably effective in
acheiving the outcomes they are intended for, application of any of these products without prior analysis of the
security needs of the organisation may or may not improve the organisation's overall level of IT security
(depending on the particular product and the particular organisation), and almost certainly will not meet
all of that organisation's specific IT security needs.
saosce offers a comprehensive IT security analysis service, the end result of which is an
assessment of in-place security measures and present security needs, and a set of recommendations for security
measures to be implemented. These measures may include any combination of off-the-shelf and custom products
(hardware and software), policy reviews and end-user training. Of course, saosce can also help
your organisation implement the chosen solutions.
Just as important to continued secure operation of an organisation's IT infrastructure as the initial security
analysis and implementation of suitable security measures, is the ongoing monitoring & maintenance of the
systems and networks being protected by those measures.
In the bricks & mortar world, since time began, technology in the security arena has been a constant race
between those that create new security measures and those that create new ways of defeating them. The same is true
of IT security, but the race is run in the much faster-moving world of "cyberspace". No matter how
good any security measure is today, someone, somewhere, in the not too distant future, will find a way to compromise
it.
A good security monitoring and maintenance service is about timely detection when such a compromise has occurred
in a given network (regardless of whether the exploit is publicly known yet or not), and the timely implementation
of regular updates to security measures, as and when they become available (in the case of off-the-shelf products)
and as necessary (in the case of custom products, policies and user practices). These services are often coupled
with general network and server monitoring and statistics services, which can help with the management and forward
planning of systems and network capacity (see ICT Infrastructure Planning &
Establishment)
In the event of a security breach, providers of security montoring and maintenance services also need to be well
equipped for the provision of disaster recovery and forensic analysis
services.
saosce is well postitioned to supply all of these services. For a confidential discussion of your
organistaion's security analysis, implentation or monitoring & maintenance needs, contact
saosce at info@saosce.com.au, or for immediate action
following a security breach, at disaster@saosce.com.au (or call the
saosce disaster recovery hotline on (04) 3828-7866).
