Back to Service Library
Service Catalog / Strategic Advisory & Professional Services / Strategic Services / Firewall Assessment
156FA Base

Firewall Assessment

On this page

    Service Overview

    The Firewall Assessment is designed to evaluate and enhance the security, effectiveness, and compliance of a firewall by identifying vulnerabilities, misconfigurations, and performance issues to ensure it adequately protects the network.

    Objectives

    DeepSeas Firewall Assessment provides a comprehensive, cloud-based solution for firewall security policy and configuration analysis which includes the following activities:

    • Identify security risks already existing in the firewall rule base
    • Evaluate firewall configurations based on Center for Internet Security (CIS) standards or equivalent.
    • Perform a rule-based analysis that includes:
      • Unused rules according to actual traffic/logs
      • Covered rules that will never be used
      • Disabled rules
      • Unused objects
      • Expired rules
      • Logging configuration
      • Authentication methods


    Methodology

    DeepSeas, together with the Client, will complete the following process to initialize and deliver a Firewall Assessment:

    1. KICKOFF - DeepSeas and the Client will participate in a joint call to confirm project services, including details regarding the services to be provided.
    2. ASSESSMENT - DeepSeas to conduct a firewall assessment on identified appliances that will review existing rules base and analyze security risks according to the capabilities identified in the Service Objectives.
    3. FINDINGS PRESENTATION - DeepSeas will deliver a findings presentation to present the top security risks and recommendations.

    Deliverables

    DeepSeas will provide the following deliverables to the Client:

    • ASSESSMENT REPORT - DeepSeas will provide a copy of any scan performed on the firewall during the course of the firewall assessment.
    • FINDINGS PRESENTATION - DeepSeas will deliver a findings presentation to present the top security risks and recommendations.

    The Client shall have five (5) business days from its receipt of a Deliverable provided by DeepSeas to review and evaluate such Deliverable to determine whether the Deliverable substantially conforms with the specifications for the particular Deliverable as set forth herein, if any; and if no written acceptance or rejection is received by DeepSeas within such five (5) business day period, the Deliverable shall be deemed to be accepted.

    Client Responsibilities

    Client shall be responsible for the following:

    • The Client will assign a point of contact (POC) responsible for client coordination and logistics.
    • The Client is responsible for scheduling and coordination of internal resources for all project work.
    • The Client will attend Kickoff meeting and Findings Presentation as scheduled with DeepSeas, as well as other meetings as needed during the Firewall Assessment.
    • The Client will provide technical access and appropriate permissions necessary for DeepSeas to perform Firewall Assessment work.
    • The Client will review all Deliverables within the defined review period of five (5) days and notify DeepSeas in writing if they believe the Deliverables do not conform with the specifications for the Deliverable.
    • The Client will review recommendations provided by DeepSeas and will be responsible for taking corrective actions as needed.