Blue Dragon Consulting

Delivering Sustained Information Technology Value to Our Clients
Home Page Blue Dragon
Overview of Services
Strategic Services
Consulting Services
Data Security Services
Network Support
Network Communications
Ethernet Products
Wiring & Installation
EF&I
Grant Writing
Bandwidth Audit
About Us
Truth and Consultants
NSA Links & Guides
FAQ's
Contact Us
Site Map
Privacy Policy
Kyland SICOM 3170
IEEE1588 Automation
Data Security Services

Our portfolio of Data Security Services is rapidly becoming one of Blue Dragon Consulting's service offerings.

We have many Institutions and clients that look to our security portfolio for assistance with data security. In banking, government regulations (Graham-Leach-Bliley) require Financial Institutions to protect the financial information of their clients. In Healthcare, government regulations (HIPAA) require patient information to be protected. Our team understands and translates these regulations into practical solutions. In addition, we have experience working with regulatory auditors who verify that the proper procedures and protection are in place.

Data security is an on-going process. It is impossible to predict when existing security implementations will be obsolete due to ever changing threats and vulnerabilities. We assist our clients with developing, documenting, and maintaining a data security program that addresses both immediate and future data security challenges.

Data Security Services are the most asked for service in our portfolio. These services maintain the confidentiality, availability, and integrity of critical data.We offer a wide range of services.
Data Security Infrastructure Design & Implementation

Data security should be considered when first designing a network, while maintaining a network, and definitely prior to any network upgrade. This process includes identifying critical data to be protected, utilizing built-in hardware and software security, adding additional security solutions to fill gaps, and on-going monitoring.

 Blue Dragon Consulting assists our clients with creating, implementing, and supporting a data security infrastructure that utilizes all security options available within the network environment and addressing remaining vulnerabilities with additional solutions, if necessary. Our strategy addresses the data security infrastructure of the entire organization using industry "best practices" where applicable.

Network Data Assessments & Testing

In order to verify a business is implementing effective security solutions, a periodic assessment and testing of the network security should be performed by an independent 3rd party vendor.

We assist our clients with assessing and testing their security implementations. The resulting information is compiled into a detailed report, including a corrective action plan that offers concrete solutions to address any vulnerabilities that may be discovered. This service portfolio is used by Management to confirm their business practices and IT staff is properly protecting key company information.

Internet Firewall Security Assistance

All businesses recognize the value of an Internet firewall. However, a firewall provides little protection from Internet threats if it's not configured correctly. In addition, firewall logs must be monitored to identify possible compromises of the network security. Immediate action must then be taken to eliminate any threat or data compromise.

Our service provides clients with the capability of identifying the proper firewall solution for their network, implementing and configuring the firewall, developing a monitoring solution, and determining the immediate actions to be taken if the firewall is breached. We also evaluate existing firewall configurations and assess their capabilities and appropriateness.

External/Internal Network Penetration Testing

The security effectiveness of a network perimeter firewall solution is determined through testing. External network penetration testing is performed from outside the business to determine if unauthorized access is possible using readily available hacking tools. Internal network penetration testing is performed on site by attempting to compromise internal security measures using social engineering and network hacking techniques. It is recommended that these services be performed by an impartial and trusted 3rd party vendor.

Our service provides clients with testing external and internal security implementations. We have security certified personnel, trained to use various hacking tools and techniques, available to determine if the network perimeter protection is sufficient to secure critical company data. This information is then summarized in a concise report with the vulnerabilities and possible remedies documented.
Disaster Recovery Planning & Testing

Many businesses consider a media backup strategy sufficient for disaster recovery planning. However, a reliable Disaster Recovery Plan is much more comprehensive. It should include key personnel responsibilities, a recovery checklist, and a periodic testing schedule.

Our security specialists assist our clients with identifying critical data and technology services, documenting a plan, as well as designing a plan to access the data and services as quickly as possible following a technology disaster. We also provide on-going testing to insure the reliability of the plan.