Infrastructure Security Analysis

Commonly referred to as penetration testing or security auditing. DFS offers it's Infrastructure Security Analysis in an effort to find and remediate potential problems before they become critical problems.

 

A critical problem for public and private institutions is the increasing threat of attack. This is due to a combination of increasingly sophisticated and automated attack tools, the rapid increase in the number of vulnerabilities being discovered, and the increasing connectivity of users. As systems are opened to employees, customers and trading partners, networks become more complex and most likely are more susceptible to a security breach. That is why information security is one of the most challenging and complex issues facing companies today.

It's difficult to put a dollar figure on the cost of a security breach. Companies that experience breaches often don't report them, fearing negative consequences to their reputation and exploitation by their competitors. Even if they do report them, victims of a breach seldom know how to quantify their loss. 
But there are industry statistics available that can give you a rough idea of what it will cost your organization if a breach does occur.

One of the best sources for computer crime information in the United States is the "CSI/FBI Computer Crime and Security Survey."1 According to the report, respondents reported big jumps in incidence of financial fraud, malware infection, denials of service, password sniffing and web site defacement.

The most recent edition of this survey now estimates the average cost of a security incident to be $234,244 per respondent. Note that the cost of a single serious breach can potentially be far worse than this figure discloses. For example, the theft of at least 45.7 million customer records in 2006 cost TJX $40.9 million in one legal settlement alone.

View the Type of Attacks Statistical Chart

Industry statistics are a valuable starting point when calculating the cost of a breach, but clearly they don’t reflect the unique characteristics of your business. For example, what is your organization's reputation worth? How much will it cost your organization if your critical services go down for a day?

1 "2009 CSI/FBI Computer Crime and Security Survey," Computer Security Institute Publications, Dec. 2009,  
http://www.gocsi.com/forms/csi_survey.jhtml.

Contact DFS for a quotation regarding this service. Contact DFS