Security Review Service

Knightcraft Technology Security Review Service

Despite best intentions, security gaps can open up in any system environment. Personnel knowledgeable in the security setup of the system move on, systems get upgraded without revisiting old configurations, changes get made to system, application and operating environments, security technology and best practices change. It is only by regularly reviewing your system security that you can truly be certain that everything is optimally configured and that your valuable data and systems are safe.

Knightcraft’s Security Review service provides a full analysis of the security related aspects of your HPE NonStop server environment.

A Knightcraft HPE NonStop security review typically includes:

  • Review and evaluation of security policies against organizational requirements, applicable technical standards (e.g. PCI DSS) and best practices.
  • Review of user and group allocation and management, including management of privileged userids and password distribution procedures.
  • A detailed analysis of current security configuration including Guardian, Safeguard, OSS, Pathway, XYGATE, ISV security software, TACL, batch and network environments.
  • A review of which files,subvolumes and directories users/groups on the systems are able to access.
  • A review of reporting and alerting procedures including security incident identification and escalation procedures.
  • Analysis of controls between production and development environments.
  • Identification of vulnerabilities in configuration and recommendations of how these can be mitigated.
  • Identification of non-compliance with industry standards or internal security policy documents.
  • A comprehensive report and summary presentation of all findings with specific recommendations of what needs to be done to remediate gaps in security, compliance and audit requirements.

HPE NonStop Internal Penetration Testing

Our Security Review service can optionally include Penetration Testing of your HPE NonStop environment, to demonstrate in a “hands on” fashion the ways that an unauthorized user may be able to access sensitive data or obtain privileged userid powers on your systems.

Details of our Security Review Process

For more details on how Knightcraft approaches a customer security review, click here to view the presentation on Reviewing Your Security that we delivered at the HPE NonStop Advanced Technical Bootcamp.

Knightcraft services can be obtained directly from Knightcraft or can be procured through HPE. Please Contact us or your HPE account team to find out how we can help you achieve your security and compliance objectives.