On-Site Review

HomeOn-Site Review

On-Site Review

Our on-site security reviews, are designed to assess in a controlled manner, the availability of data held both physically and on computer systems, or other forms of magnetic media to unauthorised user’s and to assess the general level of both personal and I. T. security that exists within an organisation or a particular element thereof
The assumption, that an “unauthorised” user has successfully gained access to the relevant location is made. Whether they have successfully bypassed any physical security measures or have legitimate access, such as a disgruntled employee, cleaner or a security guard is immaterial for the purpose of the review.
Standards applied
The benchmark against which reviews are carried out would be agreed in advance with the client and can be customised to suit any particular requirements, depending on business evaluations can be undertaken against:

  • Client policies and procedures
  • Evaluation against standards such ISO:27001
  • FSA regulations
  • Sarbanes-Oxley

Areas covered

A sample of potential; areas covered in such a review would include:

  • Human Resources (personnel) security
  • Physical and environmental security
  • Access control
  • ‘Clear desk’, where applicable.
  • Confidential waste
  • Computer and network management
  • System access control
  • Application systems security
  • The control of media storage.
  • Structure of user identification readily available.
  • Availability of system passwords from uncontrolled sources.
  • Accessibility of both local and network based systems.
  • Key management

All reports are clear and concise and contain cost effective recommendations, where applicable.

For more information regarding on-site reviews please call +44(0)1529 306284 or email contact@ccc-ltd.com