QTS Press Release

Release Date: November 18, 2002

(South Orange, NJ) November 18, 2002 – QTS today launched its new QuikSecure? Vulnerability Assessment service offering, providing customers with a comprehensive report showing specific vulnerabilities on their network, and guidance on removing them.  According to Neil Rosenberg, President and CEO of QTS, "our QuikSecure Vulnerability Assessment service is the logical next step after our QuikSecure Security Assessment service, and gives businesses a detailed view of the potential points of attack on their network."

Using Symantec's industry leading vulnerability scanning software, NetRecon, QTS performs a scan of the customer's network, once from outside the firewall, and once from inside the network.  The external scan provides a hacker's-eye view of the network, while the internal scan provides a more thorough view of potential vulnerabilities.  Areas that are identified include open ports, missing patches, weak passwords, and misconfigurations.  NetRecon maintains a master database of security vulnerabilities and in the report describes the vulnerability, rates its impact, provides background on it, and notes actions necessary to eliminate it.

QTS provides the customer with a comprehensive report that shows the identified vulnerabilities, by vulnerability and by server, for the customer to review.  QTS then offers a teleconference to review the report and advise the customer on recommended action steps, which either the customer or QTS can perform.

Rosenberg also noted that QTS, as a Symantec Enterprise Solutions Partner, is participating in a new initiative with Symantec where customers who purchase a QTS QuikSecure Vulnerability Assessment receive a 10% discount on purchase of specific Symantec security products including host and network based intrusion detection and vulnerability assessment and management tools.

Most businesses don't have the tools to readily identify all the vulnerabilities on their network," noted Rosenberg, a Certified Information Systems Security Professional.  "Our Vulnerability Assessment offering provides this critical information, at a very reasonable price point, and serves as a critical diagnostic in refining the security on our customers' networks."

The offering is priced at a fixed cost of $2,500 for a scan of up to five internal servers, and pricing is customized thereafter based on the size of the network.  The cost includes the scans, the report and a one hour teleconference for interpretation of the report, questions and recommendations.

QuikSecure Lifecycle Services

QTS' QuikSecure security life cycle methodology is specifically designed to take a business through the various stages of implementing and managing a network security system.  The components of QuikSecure include:

• QuikSecure Security Policy Development: Using QTS-standardized templates as a starting point, QTS works with the customer to develop an organizational Security Policy to define acceptable use and protect the organization legally and at a business level.  This is the heart of where all of the system's security configurations should come.
• QuikSecure Architecture Service: QTS works with the customer to design a security architecture based on current and future business needs and technology.
• QuikSecure Integration Services: Based on the Security Policy and Security Architecture, QTS implements a network security solution using components from industry-leading manufacturer partners, and provides training so the customer can manage the system on an ongoing basis.
• QuikSecure Assisted Security Management Services: From its Customer Support Center, QTS provides remote monitoring and management services for the customer's Firewall/VPN, Intrusion Detection System, Web Servers and other security components.  This includes reviewing system logs for signs of breach, and verifying proper functionality.  Although this can be done by the customer, this offering is often more cost effective based on centralized expertise and efficiency at QTS.
• QuikSecure Security Evaluation Services: QTS conducts a comprehensive, high-level Security Assessment of the customer's systems, processes and procedures, which can be followed by a Vulnerability Assessment using standardized scanning tools, and then into a Penetration & Attack Test (PAT) to attempt to actually break into the network.
• QuikSecure Microsoft Platform Review Services: QTS conducts a one week structured program to review security on the customer's Windows, Exchange and SQL Servers, and transfers knowledge regarding security best practices and optimal configurations.

For customers with established security systems, QTS can start with a Security Assessment and Vulnerability Assessment, then work back through the other stages to refine the system.  "Customers can be at different stages, but managing security is an ongoing process" noted Rosenberg.

QuikSecure services are available now from QTS.  Contact your QTS Account Manager for pricing and more information.

This site last updated 11/18/02
? 1999 Quality Technology Solutions, Inc.
76 South Orange Avenue Suite 302, South Orange, New Jersey 07079
telephone: 973.761.5400       fax: 973.761.1881
email: info@qtsnet.com