All Products
Search

This Product

    Managed Security Service:Risk Assessment Service

    Document Center

    Managed Security Service:Risk Assessment Service

    Last Updated:Sep 29, 2024

    Risk Assessment Service of Managed Security Service (MSSP) includes comprehensive asset identification, threat identification and analysis, and vulnerability identification and analysis based on the information systems in the cloud. The service is an overall security assessment on cloud infrastructure, cloud security facilities, cloud data, monitoring and audit methods, and applications. After a comprehensive risk assessment or vulnerability scan on hosts or web applications, security experts help you strengthen security baselines, fix vulnerabilities, and upgrade components.

    Introduction to Risk Assessment Service

    Description

    To ensure the reliability and security of your business during security risk assessment, security experts of MSSP assess your business conditions based on your network system and help you develop inspection plans, risk prevention methods, emergency response plans, and authorization instructions to prevent and handle accidents that may occur during the inspection process at the earliest opportunity.

    Category

    Description

    Method

    Network security assessment

    • Check whether policies for network access control are appropriate.

    • Detect vulnerable ports.

    • Analyze the security issues detected in preceding checks, provide you with fix solutions, and help you fix security vulnerabilities.

    Manual inspection and tool scan

    Host security assessment

    • Detect security vulnerabilities in the operating systems of hosts and application software.

    • Detect configuration risks in operating systems and application software.

    • Analyze the security issues detected in preceding checks, provide you with fix solutions, and help you fix security vulnerabilities.

    Manual inspection and tool scan

    Application security assessment

    • Detect security vulnerabilities in the business application code.

    • Analyze the security issues detected in preceding checks, provide you with fix solutions, and help you fix security vulnerabilities.

    Manual review and tool scan

    Service process

    Risk Assessment Service involves the following phases:

    1. Online assessment

      Security experts conduct asset surveys, security baseline scans, vulnerability scans, and personnel interviews. This helps you understand the security status quo of your business systems and provides information for risk analysis.

    2. Data analysis

      Security experts analyze and sort the data collected during the onsite assessment to provide a basis for a risk assessment report.

    3. Report writing

      Security experts write and revise a risk assessment report. Security experts write a risk assessment report based on data analysis results and provide suggestions on how to resolve and prevent security risks in your business systems. Security experts revise the report based on the communication with stakeholders.

    4. Result generation

      After the risk assessment is complete, security experts deliver the risk assessment report.

    The following flowchart shows the process of Risk Assessment Service.

    image

    Download a risk assessment report

    1. Log on to the MSSP console.

    2. In the left-side navigation pane, choose Service Report > Risk Assessment.

    3. On the Risk Assessment page, find the service report that you want to download and click Download in the Actions column.