Rapid Security Configuration Assessment ...
About RSCA
Rapid Security Configuration Assessment (RSCA™) is the answer for small,
medium, and larger companies that need an automated solution for assessing their state of
regulatory, security, and configuration compliance.
An RSCA is simple, automated, and can be tailored to answer a variety of
compliance questions. Customers typically tailor their screenings to an
area of importance to their organization, such as:
•
Regulatory: Sarbanes-Oxley, HIPAA, & GLBA
•
Federal: DISA & FISMA
•
Industry: PCI
•
Security: Microsoft Hardening, Security Updates
The Need for Automated Assessment
|
According to analysts, 80-90% of security exposures are the
direct result of improper configuration of servers and workstations. The
consequences of improper system configurations impact the bottom line and
inundate already over-allocated IT resources. As government mandates,
regulations, and best practices evolve, it is critical for organizations to
continuously assess their compliance state and implement change management,
security and configuration management controls.
|
|
|
What is RSCA?|
|
|
A RSCA (Rapid Security Configuration Assessment) engagement
is designed to allow organizations to quickly validate their actual system state
against recommended security, system and configuration settings. Leveraging
regulatory mandates, security guidelines and accepted industry best practices as
the baseline, the assessment is conducted on a representative sample of systems
to understand overall enterprise compliance and identify deficiencies in
operational policies and technical controls.
RSCA offered by NetworkingPS (using Configuresoft's ECM software) can extend
your current security and compliance service offerings today. The RSCA program
embeds compliance knowledge and automation directly into the wizard-driven
process, keeping your resource levels low and training investment minimal.
RSCA compliance standards and reports are predefined so your team does not have
become product and policy experts. Throughout the entire process, our RSCA
support team is close by to answer questions, analyze customer data and assist
in the final report preparation.
|
The RSCA Process and Results|
-
Plan Engagement - The
NetworkingPS RSCA Team will contact you to schedule and define the
objectives of the RSCA engagement.
-
Collect Data -
The RSCA team will use ECM to collect security and configuration data from a
selected subset of your enterprise systems.
-
Analyze Data -
The RSCA team will analyze key operating system, application, and security
settings against industry and regulatory compliance templates. The team will
develop a set of detailed reports to include security, operations, program
findings and recommendations.
-
Management Review -
On completion of the RSCA engagement, NetworkingPS will present a Executive
Briefing with findings, background issues, recommendations, and immediate
and long-term remediation methods.
|
|
|
For More
Information
|
To download documents about the
Rapid Security Configuration Assessment (RSCA) from NetworkingPS, please
click here.
|
|
To have someone contact you about
performing an RSCA for your company or to discuss RSCA in more detail, please
click here. |
|
| |
| |
| |
To learn more about this and other NetworkingPS products and services,
please click here. |
|
