Documentos de Académico
Documentos de Profesional
Documentos de Cultura
Services
2010. 02.
AQAS > Overview
Based on the AhnLab Consulting Methodology, AhnLab will assess the security level of
customer and provide drafted master plan.
Procedures
Master Planning
Requirement
Definition
Penetration Test
Work Planning
Risk Assessment
As-Is Analysis
2. Risk Assessment
Review
Review
Security
Security 3. Configuration Management
Global
1 Day
ISO27001 Policy,
Policy,
Standar Procedure
Procedure 4. Media Protection
d 5. Awareness & Education
Interview
Interview 6. Contingency Plan
8. Personnel Security
FISMA (US) Analysis
Analysis
Regiona 9. Incident Response
l KISA ISMS
10. Audit & Responsibility
(Korea)
Standar
1 Day
Phase
Phase22 Step 4 Attack Attack the weakest point first Detour firewall
Verification
Collect Install Acquire Attack Testing
Phase
Phase33 Step 5 Attack Spread
Evidence Backdoor Admin. RightsOther Systems
Penetration Test
Step 6 Report Generation (Attack Method. Vul. List, Evidence)
Recommendation
Phase
Phase44 Reporting
Step 7 Reporting Concepts Hacking Demo Remediation
Drawing PT Scenario
Reporting
Administrat
ive security Prepare a checklist for security review / Make & perform security process and operation
review system setup, security rule, and etc.
Risk assessment
Make and perform a plan for security
training