SourceOne Technology Solutins, Inc.

	Automotive
	Manufacturing
	Banking and Finance
	Healthcare
	Retail & CPG
	Telecommunications
	Insurance
	Pharmaceutical

1.1Project Definition:

SecureOne is a network based database security assessment tool capable of scanning multiple SQL database servers. Unlike traditional auditing practices / SecureOne automates the process of vulnerability assessment on SQL Servers and provides fast and accurate results within minutes, after vulnerabilities are discovered, it provides step by step solutions to mitigate them; thus simplifying the task of database security.

SecureOne is a Unified Digital Risk Management solution which explores the weakest link in enterprise security and identifies critical issues that lead to significant information, reputation and monetary losses. SecureOne is a comprehensive tool which is capable of enumeration, compliance, auditing and forensics different databases and Windows operating system from single console. With thousands of Vulnerabilities in its database and above 30 embedded functional utilities, SecureOne completely identifies security risks, prioritizes them according to their severity and suggests methods of mitigation.

Security auditing is an authorized attempt to explore security related vulnerabilities in the systems which if exploited can result in a major security breach. User can discover multiple vulnerabilities which could be exploited to gain access, but merely discovering these vulnerabilities enough? No! You may also need solutions to fix these problems. SecureOne extends its offer by providing overviews, descriptions and solutions of the identified vulnerabilities which if implemented properly will result in securing the system. Imagine a machine not offering any vulnerability which could be exploited to gain access this is a dream which is now a reality for any administrator due to SecureOne.

2.1 Process Overviews:

SecureOne is designed to provide a 360 degree assessment of security posture of an organization therefore in the beginning it identifies information assets and enumerate the network to explore vulnerabilities which could be identified and exploited without logging on them. It extends options of auditing single or multiple machines within minutes against predefined polices like CIS, ISACA, SANS or customizable security policies.

2.1.1. Identify Information Assets

In this process the SecureOne has to create an Audit session (A session is a logical grouping of applications and audits). By doing so the SecureOne is "identifying" the various operating systems and databases available on the network that have to be audited to explore

potential vulnerabilities that they might possess. This is done by providing "a host name" or by providing "a single" or "a range" of I.P addresses.

2.1.2. Creating Auditing Profile

This is a significant step for the SecureOne as the SecureOne has to select a profile from the predetermined profiles or has to enforce the Organization's existing policies. The SecureOne has the following profiles available for the SecureOne to use:

CIS Profile - This profile is designed by following the standards of Center for internet Security and NSA.
ISACA Profile - This profile is designed by following the Information Systems Audit & Control Association standards which use COBIT framework.
SANS Profile - This profile is designed by following System Administration, Audit, Networking and Security standards for Auditing.
SecureOne Profile - This profile is designed by security experts at Secure Bytes and is dependent on the SecureOne that you are using. (Example if you are using Secure Ora SecureOne then the profile generated would be SOA Profile)

In this step the SecureOne can use one of the default Audit Profiles or he/she can create one according to his/her Company Policies.

2.1.3. Conduct Audit

In this step the SecureOne will audit an asset (Oracle, Windows, Cisco, MSSQL) by providing its login credentials to find out if that asset has vulnerabilities through which it can be exploited. In the end SecureOne will provide detailed description and solution of the existing vulnerabilities.

2.1.4. Review Reports

A key feature of SecureOne is its ability to generate comprehensive and detailed reports. After the audit is complete the SecureOne can use the report wizard feature to view the report of the event. The report classifies the vulnerabilities in accordance with the level of threat they posses for the device. The report wizard allows the classification of reports by:

Audit ID
Host IP address
Dates

All this is done in a manner which quiet easy to comprehend by the SecureOne.

2.1.5. Analyze and Mitigate the Risk

Audit report will provide an in depth analysis of the risks and vulnerabilities that have presented themselves during the audit and will also present step by step solution to terminate the vulnerability in order to secure the device from future threats.

3.1.1. Architecture and design

SecureOne functionality and architecture comprises of four major areas namely Vulnerability Management and Auditing, Compliance Management, Risk Assessment and Forensics.