Solutionary > Security Consulting Services> Architecture Review & Development

Services and Solutions

Managed & Monitored Security Services

Event Correlation & Information Management

Device Monitoring & Management

Internal & Perimeter Vulnerability Management

Intrusion Prevention Services

PCI DSS 1.2 Monitoring

Unified Threat Management

Security Platform Services

In-the-Cloud Security

Compliance & Risk Management

Risk Assessment & Compliance Measurement

SNAPshot Security Assessment

ISO, PCI, SOX, CobiT, COSO, HIPAA Compliance Reporting

Security ROI Metrics

Benchmarking

Security Consulting Services

Application Security Assessment

Vulnerability Assessment

Certified PCI Audit Services

Policy Review & Development

Architecture Review & Development

External Penetration Assessments

Incident Response & Forensics

How do you evaluate if your architecture meets your current and future business requirements? Many organization's networks have grown through necessity not specific design, which has presented security vulnerabilities that are exploitable both internally and externally.

Solutionary works with your team at the enterprise architecture level or on the smaller scale changes. We will come in prior to a new implementation to evaluate the design, or test the strength of the security at any point along the way towards and following implementation.

Service Description
Solutionary leads the architecture review and development process with four key phases:

Understand the current state
Articulate the desired future state
Identify the gaps between the two
Develop approaches to close the gaps

Solutionary grounds its findings and recommendations in the industry-accepted philosophy of "security in-depth." A "security in-depth" architecture and approach validates that each security piece builds upon the capabilities of the other to create overlapping controls and fail-over. As a result, if a single layer of security is broken, other layers of security will prevent data from being disclosed or attacks from being conducted. However, Solutionary recognizes that solid policy, procedures, and guidelines and administrative practices are as critical for successful "security in-depth" architectures as implementing security "boxes" or technologies.

Solutionary assesses and establishes recommendations for information infrastructure protection that are rooted in your requirements and supported by policy.

The Solutionary Advantages

Solutionary is vendor-neutral, and because we don't sell products, we have no vested interest in replacing existing hardware and/or software.
We have trained and certified security professionals with extensive cross-industry experience to ensure standards of best practice are implemented throughout the engagement.
Solutionary utilizes NIST 800-series standards for architecture review and development.
We include security guidelines of best practice from IETF, SANS, and others.
We can do a paper-based review of your architecture and also provide tool-based testing before, during, and/or after the review and analysis.
Solutionary prioritizes assignments to different network compartments according to its function.
Solutionary can provide a working white-board session instead of or in addition to documented recommendations for improving your network security.

Service Benefits
Solutionary's architecture reviews are not performed in a vacuum. It is important that your key resources are involved along the way so the resulting architecture supports your business and technical requirements. Because of our deep experience, you benefit by receiving an architecture that is flexible, creative and strategic.

Solutionary's architecture review identifies issues with your network, applications, and/or DMZ.
Solutionary will conduct interviews with subject-matter experts to understand your internal and external interfaces.
Your final deliverables from Solutionary will include information for the business and the technical sides of the organization.
Our hands-on review and analysis, including the white-board session, leaves your internal resources trained and empowered for ongoing support of your environment.
Your documented analysis and recommendations from Solutionary will leave your organization with a better understanding of your current network architecture, associated issues, and the requirements for the desired future state.

At Solutionary, we make security manageable.