TECHNICAL AUDIT OF SECURITY OF INFORMATION - TELECOMMUNICATION SYSTEMS OF ENTERPRISES

The content of the audit and vulnerability testing information telecommunication system (ITS) any enterprise is considered. Based on results security audit, overall company's ITS assessed. It proposed to assess IT using penetration in following areas: from outside inside infrastructure, social engineering personnel for resistance DDoS attacks; assessment mobile application, web resource wireless networks. general algorithm infrastructure (analysis vulnerabilities resources) form stages: initialization, passive active intelligence, operation post-exploitation, systematization presentation assessment, risk recommendations regarding them elimination. In stages all operations are carried out without causing real damage ITS. purpose a technical shown, which covers components can be considered as an independent examination or procedure their investigation order condition identify reserves. Technical result checking software part provides opportunity list key problems get comprehensive noted that accordance with modern requirements, used remote support, variant audit. Conducting includes: analysis risks associated possibility threats resources; current level security; localization "bottlenecks" protection system; compliance existing standards field providing implementation new improving effectiveness mechanisms. detailed report enterprise's has been revealed.