The Ransomware Problem

Ransomware is a type of malware, or malicious software, that is designed to deny you access to your files and systems using encryption. Once a bad actor gains a foothold and has your files and systems "hostage," they will demand a ransom in exchange for a key that, in theory, will unlock them.

Bad actors are constantly trying to inject malware through things like phishing emails, a vulnerability exploit, or misconfigured networks and systems. It only takes one wrong click to cause extended interruption of operations, reputational harm, and data loss. Ransomware attacks continue to be one of the greatest threats to data security and business operations, and our Ransomware Preparedness Assessment was created to help you combat them.

Our Approach

Our Ransomware Preparedness Assessment is an in-depth review of how prepared your organization is to combat a ransomware attack. We've divided the assessment into two distinct phases:

1) Ransomware Control Audit, and

2) Qualys-Powered Host Configuration Review.

With this approach, we can determine your organization's preparedness from an administrative and operational level, as well as provide a technical review of servers and workstations compared to ransomware best practices.

Ransomware Control Audit

We've constructed a custom control framework using our experience in the industry and guidance from NIST, FFIEC, CISA, CIS, and more, plus assorted controls into three major categories:

We review each control, determine the implementation status, and make recommendations with ransomware as the focus. For example, a standard IT controls audit will evaluate the effectiveness of your backup systems per a specific regulation like NIST. Our Ransomware Preparedness Assessment will examine how your backup systems will perform against a ransomware attack. The result is an actionable, distinct report that will serve as a guide in protecting your organization from ransomware.

Qualys-Powered Host Configuration Review

Our host configuration review uses a Qualys virtual appliance to compare the configurations of your servers and workstations to a ransomware best practices benchmark. Configuration issues that could lead to ransomware or promote the spread of the attack across your network can be identified and prioritized by your organization.

Other Services to Combat Ransomware

Our Ransomware Preparedness Assessment is a great way to determine how your organization would be able to respond to a ransomware attack. In addition to this, we also recommend services like these for a fully comprehensive preparedness program.

Let's connect!

Get in touch to learn more about our Ransomware Preparedness Assessment

Contact Us