Syteview™ - Security Review
    
   
Syteview was designed from the ground up with your data security in mind.   Highly configurable and using multiple layers of defense and authentication, Syteview gives you the tools you need to securely publish your data to your intranet, extranet, or the internet, but in order to do this it must run on secure servers and on a secure network.  Before going live with your data publishing system we highly recommend that you conduct a detailed security review.

As part of this security review we recommend that you:

  • Confirm that the documentation of your network configuration is up to date
  • Review policies governing external access to your internal network
  • Review policies governing access to external networks from your internal network
  • Verify that all non-essential network and data communication protocols have been disabled on your network
  • Identify and minimize the number of points of exposure to networks not under your control
  • Verify and test the configuration of your firewalls
  • Test the response of your intrusion detection system
  • Review your policies and procedures for applying updates and security patches to all network devices
  • Review the log files of all inbound and outbound traffic for a selected period of time
  • Review policies governing the use of passwords, password length/content, frequency of change, unique password and other password characteristics


  • Identify locations of sensitive corporate information
  • Review policies and controls governing access to sensitive information
  • Review the audit and event logs of all servers containing sensitive information
  • Review and test the configuration of your servers to ensure that the host operating system, applications, services, network communication protocols, and access control and user rights are in compliance with your security policies
  • Confirm that the documentation of your servers' configuration settings is up to date
  • Review your policies and procedures for applying updates and security patches to your servers and server applications


  • Review your policies and procedures for applying updates and security patches to all workstations and other network computing devices
  • Review procedures for updating your anti-virus software
  • Review policies governing the use of dangerous network utility software such as sniffers, port scanners, remote control programs, etc. on your network
  • Scan network computers for prohibited network utilities
  • Review the event logs of a selected network workstations


If desired our experienced team of professionals can assist you in this matter.   Please contact us at Security Review to discuss this matter.


   
Syteview is a trademark of Multi-CAD Corporation Symix and Syteline are trademarks of Mapics Corporation