Re: Penetration Testing

["St. Laurent, Tim" <tstlaure () RICHMOND EDU>]

Great!  Thanks Jim.  I'll look into it.

T

-----Original Message-----
From: Jim Moore [mailto:jhmfa () CIS RIT EDU]
Sent: Monday, February 10, 2003 11:54 AM
To: SECURITY () LISTSERV EDUCAUSE EDU
Subject: Re: [SECURITY] Penetration Testing


A couple of years ago, I had a whitepaper that AtomicTangerine (purchased by
RedSiren) did on what should be in a penetration test.  It was a really good
whitepaper.  Ask RedSiren for the whitepaper, and then see if that meets
your needs.

Jim


St. Laurent, Tim wrote:
> Hello everyone,
>
> I was curious if anyone has contracted a third party to provide
> penetration testing and auditing for their network and systems?  We
> are looking at having someone do an "real" penetration test of our
> network and our systems.  I would like to avoid any company that just
> comes in and scans our network for vulnerabilities (i.e. a ISS scan)
> as we can do this ourselves.  If anyone has any recommendations as to
> which companies out there provide the best service,  I would
> appreciate any good or bad experiences.
>
>
> Thanks,
>
> Tim
>
> ----------University of Richmond----------
> Tim St. Laurent
> Security Administrator
> *tstlaure () richmond edu
> (804-289-8655
>
>
>
> ********** Participation and subscription information for this
> EDUCAUSE Discussion Group discussion list can be found at
> http://www.educause.edu/memdir/cg/.


--
Jim Moore, CISSP, IAM
Information Security Officer
Rochester Institute of Technology
13 Lomb Memorial Drive
Rochester, NY 14623-5603

Office: 585-475-5406
Fax:    585-475-7950

PGP (jimmoore () mail rit edu): 9C33 0328  CD59 B602 82B8  8521 0B86 0DC9 963C
D0C0

**********
Participation and subscription information for this EDUCAUSE Discussion
Group discussion list can be found at http://www.educause.edu/memdir/cg/.

**********
Participation and subscription information for this EDUCAUSE Discussion Group discussion list can be found at 
http://www.educause.edu/memdir/cg/.