nGuard HomepageHome     Contact UsContact Us
 
 

  nGuard MASS

Comprehensive security audit service with clear & concise deliverables.

PCI.  HIPAA.  GLBA, SOX and NERC.  Rapidly increasing regulations and compliance requirements.  For these reasons and more, it has never been more important to examine the security readiness of your organization’s critical systems and networks.

Contact nGuard Now

nGuard MASS is a nationally-recognized security assessment practice that helps clients get compliant and stay secure.

The Solution

Utilizing veteran, credentialed security auditors for over a decade, nGuard’s MASS Group has developed and refined a broad array of security assessment modules.  These activities allow nGuard to provide a custom-tailored assessment program, examining specific areas of concern with pinpoint accuracy and precision.

Expertise & Value

nGuard MASS delivers:

  • Certifications:  nGuard is a certified PCI Qualified Security Assessor (QSA) firm with several certified QSA consultants on staff.  The nGuard team also holds numerous security certifications such as ISO 27000, CISSP, CISA, GIAC SANS and more.
  • Comprehensive Baselines:  nGuard performs assessment baselines which provide a thorough analysis of the subject area and deliver the results in a complete deliverable set.
  • Ongoing Assessment Activities & Vulnerability Management:  All nGuard MASS audit modules are available as an ongoing activity and can be performed on a monthly or quarterly basis.  Update reports capture the clients’ changing vulnerability profile, identifying both historical vulnerabilities that have been corrected as well as new vulnerabilities which have emerged.
  • Custom Assessment Programs:  With over 22 different assessment modules, nGuard identifies the client’s specific requirements and provides an assessment program that is both custom-tailored and cost effective.
  • Scalable Assessment Solutions:  nGuard’s custom assessment programs are tuned to the needs and size of our clients.  nGuard retains established customers ranging from the Fortune 100 to small/medium businesses.

Featured Assessment Capabilities

nGuard is recognized in the industry as having one of the most diverse assessment suites in the United States.

  • PCI QSA Assessment
    • Delivered by expert and certified Qualified Security Assessors (QSAs), this activity fully satisfies PCI's Onsite Assessment requirement for both merchants and service providers.
  • Network Reconnaissance
    • Comprehensive exploration of the targeted perimeters, networks and assets.
  • Internet Penetration Testing
    • Expert vulnerability analysis and exploitation of exposed network services and systems.
  • Internal Vulnerability Assessment
    • Internal vulnerability analysis and exploitation on interior local and wide area networks.
  • Ongoing Vulnerability Management
    • Ongoing vulnerability management is available for both external and internal networks.
  • Console Audits
    • Administrative, console audits against industry best-practice lockdown procedures.
  • Social Engineering
    • Remote, security awareness test of employees by impersonating another employee, customer or trusted partner. Various mediums are used.
  • Physical Penetration Testing
    • Onsite physical penetration testing of target office and data center locations.
  • IP Telephony Penetration Testing
    • Active assessment of IP Phone to Digital PBX communications.
  • Network Database Testing
    • Intensive network database security testing that thoroughly examines all aspects of database security through the database listener.
  • Web Application Security Assessment
    • Advanced web application security assessment that meets all regulatory or standards compliance requirements.
  • Wireless Network Reconnaissance
    • A careful examination of wireless LAN environments to identify access points in use, encryption and authentication methods, and identify rogue access points or clients.
  • Wireless Network Penetration Testing
    • Intensive penetration testing of target wireless LAN infrastructure including controllers, access points and clients.
  • Dialup Penetration Testing
    • A classic assessment activity that involves the examination of organizational phone lines to identify and exploit computing assets accessible via dialup.
  • Compliance Audit
    • Assessment and detection of the leakage of regulatory and/or sensitive information through Internet perimeter networks.
  • Password Policy Testing
    • Actively tests customer's encrypted password databases for alignment with company policy and/or governing regulations.
  • Strategic Security Assessment
    • An essential strategic assessment of the security program, security policies and security architecture.
  • PCI Strategic Security Assessment
    • A specialized strategic assessment of the security program, security policies and security architecture for alignment with the PCI Security Standard.
  • HIPAA Security Assessment
    • A specialized strategic assessment of the security program, security policies and security architecture for alignment with HIPAA and the HITECH Act.
  • ISO 27000 Security Assessment
    • Utilizing IRCA Certified ISO 27000 auditors, nGuard measures the organizations compliance with ISO 27000 Control Objectives.
  • Security Program & Policy Assessment
    • Provides an in depth assessment of a customer's security program and policies.
  • Information Disclosure Testing
    • Specialized test discovered historical leakage of confidential, compliance or personally identifiable information (PII).
  • Malware & Hacker Detection
    • A specialized nGuard assessment option that analyzes the customers Internet communications for evidence of active compromise or breach.