Services > Security

Audit

Network security is a basic element of a good network design, and knowing how to implement it and be compliant with regulatory mandates is crucial. Our tasks can change due to what accreditation the customer has. We are familiar with the following industry mandates: SOX for publicly held companies regarding their financial reporting, HIPA for the medical industry regarding patient records, Gramm-Leach-Bliley for the financial industry, or PCI rules for the credit card industry. We can uniquely tailor each of our audits to that customer’s needs, for the audit needs to be unique as the customer and their setup themselves.

Solana Technologies performs security audits by determining risk assessments in accordance with NIST guidelines. We examine the threats and the vulnerabilities to the entire system. The vulnerability assessment is the most intensive part: we perform intrusion scans, review the security architecture and configuration of security devices, and patch levels on the servers. Anything that has to do with security, we review. A large part of the audit involves determining what it is that needs protecting be it financial records, patient records or corporate secrets. Then we take the threats and compare them to the vulnerabilities to determine risk. This methodology helps us determine what controls we have to determine what controls we have to mitigate against risks. This can include the creation of additional firewalls, encryption, unique user names and changing passwords. This can also mean recommending physical or human security against disgruntled employees. Then we can recommend our own controls to implement on top of the existing ones.

Wireless

Wireless systems are inherently vulnerable by nature. The problem arises from a lack of physical attachment to the system by a wire. There are a lot of technical connotations to creating secure wireless systems. Encryption became the first way to protect those systems, but these set-ups have vulnerabilities as well. WPA improved that by creating a better encryption that is harder to break. But it still did not address some of the problems associated with WIFI: interference from nearby neighbors’ wireless networks, or rogue access points. Here at Solana Technologies we have new solutions for securing wireless systems. We can jam rogue users, set up access control by requiring user names and passwords, or allow authentication of users from a company directory.

One of the biggest problems out there to securing wireless systems is laptops. Employees can take the laptops home at night and use unprotected Internet, and then bring viruses back to the network the next morning. Now your network can require that laptops have anti-spam, anti-firewall, and other measures or they will not allow you to access the office network.

Perimeter

A perimeter is an invisible wall around a company’s network. A network can be shut down or crippled when the perimeter is breeched by viruses, rogue users, spam or pop-ups. A perimeter can be fortified with a firewall or an intrusion detection device. When you allow remote access to the network, you need to draw that perimeter out around that user to assure that they are following all the rules and not putting the network at risk. We can build firewalls, intrusion prevention and detection, VPN devices, two-factor authentication, and a variety of other applications to secure the network perimeter.