Sample - Consolidated Security Report Card
2y ago
51 Views
1 Downloads
453.36 KB
6 Pages
Report/dmca
Download PDF

Transcription

SecurityAssessmentConsolidated Security Report CardPrepared for: Your Customer/ProspectPrepared by: Your Company Name11/15/2017CONFIDENTIALITY NOTE: The information contained in this report document is for the exclusive use of the client specifiedabove and may contain confidential, privileged and non-disclosable information. If the recipient of this report is not the clientor addressee, such recipient is strictly prohibited from reading, photocopying, distributing or otherwise using this report or itscontents in any way.Scan Date: 11/2/2017

Consolidated Security Report CardSECURITY ASSESSMENTTable of Contents1 - About the Report Card2 - Computer Security Report Card3 - Scoring RubricPROPRIETARYPage 2 of 6

Consolidated Security Report CardSECURITY ASSESSMENT1 - About the Report CardThe Computer Security Report Card assesses individual computers at a high level based on various security criteria. The report card should beviewed as a relative measure as to how well a computer complies with security best practices. There may be specific reasons or compensatingcontrols that may make it unnecessary to achieve an “A” in all categories to be considered secure.PROPRIETARYPage 3 of 6

Consolidated Security Report CardSECURITY ASSESSMENT2 - Computer Security Report CardDevices discovered on the network are assigned an overall score, as well as a specific score for each of the assessment categories detailedbelow. The scores are represented as color-coded letter grades ('A' through 'F'). Where there is not enough information to determine a grade, agray box with a dash '-' appears. The rubric at the end of this report lists the criteria used to determine the grade for each category.* Note that because the overall grade is a composite of available grades, it may be skewed in cases where all security data could not sFailedLoginsNetworkVulnerabilitiesScreenLock withTimeoutSystem AgingSupported A-FAABUILDBOX(10.0.6.3, A-AAC-AAComputerPROPRIETARYPage 4 of 6

Consolidated Security Report CardSECURITY FailedLoginsNetworkVulnerabilitiesScreenLock withTimeoutSystem AgingSupported .103.184,169.254.93.186, 4.40.76, erPROPRIETARYPage 5 of 6

Consolidated Security Report CardSECURITY ASSESSMENT3 - Scoring RubricThe following rubric is used to determine the grade/score achieved in each category.Anti-virus / Anti-spywareA – Anti-virus/Anti-spyware is installed and update to dateB – Anti-virus/Anti-spyware is installed but not up to dateF – Anti-virus/Anti-spyware is not installedLocal FirewallA – Local firewall is enabled for both public and private networksB – Local firewall is not enabled for private networksC – Local firewall is not enabledMissing Critical PatchesA – No missing critical patchesB – Fewer than 3 missing critical patchesC – Less than 5 missing critical patchesF – 5 or more missing critical patchesInsecure Listening PortsA – There are no insecure listening portsC – One insecure listening port detectedF – More than one insecure listening port detectedFailed LoginsA – No failed interactive logins in the past 7 daysB – 7 or fewer failed interactive logins in the past 7 daysC – 14 or fewer failed interactive logins in the past 7 daysF – 15 or more failed interactive logins in the past 7 daysNetwork VulnerabilitiesA – No network vulnerabilitiesB – Minor network vulnerabilities found (CVSS 4.0)C – Major network vulnerability found (CVSS 4.0)F – Critical network vulnerability found (CVSS 7.0)Screen Lock with TimeoutA – Screen lock enabled with reasonable timeout (15 minutes)B – Screen lock enabled with high timeout (30 minutes)C – Screen lock enabled with unreasonable timeout (more than 30 minutes)F – Screen lock not enabledSystem AgingA – All computers are less than 2 years oldB – Some computers between 3 and 4 years oldC – Some computers between 4 and 7 years oldF – Some computers over 8 years oldSupported OSA – All computers have supported Operating SystemsB – Some Operating Systems are in extended supportedC – Some Operating Systems are within 1 year of end of lifeF – Some unsupported Operating SystemsPROPRIETARYPage 6 of 6

Consolidated Security Report Card SECURITY ASSESSMENT PROPRIETARY Page 3 of 6 1 - About the Report Card The Computer Security Report Card assesses individual computers at a high level based on various security criteria. The report card should be viewed as a relative measure as to h

Related Books

Network Security Analysis Based on Consolidated Threat .

Network Security Analysis Based on Consolidated Threat .

TTS Consolidated Security Procedures - Citibank

TTS Consolidated Security Procedures - Citibank

Coca-Cola Consolidated Annual Report 2020

Coca-Cola Consolidated Annual Report 2020

CONSOLIDATED ENDOWMENT FUND REPORT 2019

CONSOLIDATED ENDOWMENT FUND REPORT 2019

Average Debit Card Interchange Fee by Payment Card Network

Average Debit Card Interchange Fee by Payment Card Network

PENETRATION TEST SAMPLE REPORT - Bongo Security

PENETRATION TEST SAMPLE REPORT - Bongo Security

Sample Penetration Testing Report - Offensive Security

Sample Penetration Testing Report - Offensive Security

IFRS 10 Consolidated Financial Statements

IFRS 10 Consolidated Financial Statements

A Consolidated Interim Storage Facility for Used Nuclear .

A Consolidated Interim Storage Facility for Used Nuclear .

Technical Specifications Rev. D - 05/2021 Consolidated .

Technical Specifications Rev. D - 05/2021 Consolidated .

Consolidated* Pressure Relief Valves For Power Service

Consolidated* Pressure Relief Valves For Power Service

Consolidated* 1900 Series - Valvenco

Consolidated* 1900 Series - Valvenco

PopularTags

Recent Views