Health Alert Network Vulnerability Assessment

Protect against:Compromised information

Lost productivity

Assessment Process Run reports

Focus on HIGH vulnerability concerns Account information Systems Networks

Site visit Checklist

Physical protection Information protection

Assessment Process

Report on accounts Administrative,

disabled, inactive

Report on systems Open vulnerabilities

Report on networks Routers, switches,

wireless

Service Severity Description

ssdp (1900/udp)

High

Microsoft Universal Plug n Play is running on this machine. This service is dangerous for manydifferent reasons.

Solution: To disable UPNP, see http://grc.com/UnPnP/UnPnP.htmRisk factor : HighCVE : CVE-2001-0876BID : 3723

Assessment Process

Site visit Checklist

Physical Informational

Building Entry Points

Are doors and windows locked during non-working hours?

What types of locks are used on access doors?

What are access/key control procedures?

Are there guard stations during working hours?

Other observations:

Assessment Process

Database All information

Data analysis

Reports Per Health Department Executive Summary

Health Alert Network Vulnerability Assessment

Objective:

More secure

Information Environment