Scribd
Upload
27 views2 pages

Client Risk Report Sample Report - Part3

The network assessment report identified various security issues on the network. The overall risk score was 3120 points out of a possible 4912, representing a risk level of 63.6%. Specific issues included user accounts with passwords set to never expire, computers lacking anti-virus and anti-spyware software, inactive user accounts, outdated operating systems in extended support, inactive computers, low disk space on some computers, insecure network ports in use, and empty organizational units in Active Directory. The report recommends addressing each issue to improve network security.

Uploaded by

Mohammed H. Abdul-Montakem
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
27 views2 pages

Client Risk Report Sample Report - Part3

The network assessment report identified various security issues on the network. The overall risk score was 3120 points out of a possible 4912, representing a risk level of 63.6%. Specific issues included user accounts with passwords set to never expire, computers lacking anti-virus and anti-spyware software, inactive user accounts, outdated operating systems in extended support, inactive computers, low disk space on some computers, insecure network ports in use, and empty organizational units in Active Directory. The report recommends addressing each issue to improve network security.

Uploaded by

Mohammed H. Abdul-Montakem
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
You are on page 1/ 2

Risk Report

NETWORK ASSESSMENT

Issues Summary
This section contains a summary of issues detected during the Network Assessment process, and is
based on industry-wide best practices for network health, performance, and security. The Overall Issue
Score grades the level of issues in the environment. An Overall Issue score of zero (0) means no issues
were detected in the environment. It may not always be possible to achieve a zero score in all
environments due to specific circumstances.

Overall Issue Score: Risk Score x Number of Incidents = Total points: Total percent (%)

User password set to never expire (80 pts each)


2560 Current Score: 80 pts x 32 = 2560: 53.94%
Issue: User accounts with passwords set to never expire present a risk of use by
unauthorized users. They are more easily compromised than passwords that are routinely
changed.
Recommendation: Investigate all accounts with passwords set to never expire and
configure them to expire regularly.

Anti-spyware not installed (94 pts each)


564 Current Score: 94 pts x 6 = 564: 11.88%
Issue: Anti-spyware software was not detected on some computers. Without adequate anti-
virus and anti-spyware protection on all workstations and servers, the risk of acquiring
malicious software is significant.
Recommendation: Assure that anti-spyware is deployed to all possible endpoints in
order to prevent both security and productivity issues.

Anti-virus not installed (94 pts each)


564 Current Score: 94 pts x 6 = 564: 11.88%
Issue: Anti-virus software was not detected on some computers. Without adequate anti-virus
and anti-spyware protection on all workstations and servers, the risk of acquiring malicious
software is significant.
Recommendation: To prevent both security and productivity issues, we strongly
recommend ensuring that anti-virus is deployed to all possible endpoints.

User has not logged on to domain 30 days (13 pts each)


234 Current Score: 13 pts x 18 = 234: 4.93%
Issue: Users that have not logged in in 30 days could be from A user that has not logged in
for an extended period of time could be a former employee or vendor.

PROPRIETARY & CONFIDENTIAL Page 5 of 17


Risk Report
NETWORK ASSESSMENT

Recommendation: Disable or remove user accounts for users that have not logged on
to active directory in 30 days.

Operating system in Extended Support (20 pts each)


220 Current Score: 20 pts x 11 = 220: 4.64%
Issue: Computers are using an operating system that is in Extended Supported. Extended
Support is a warning period before an operating system is no longer supported by the
manufacturer and will no longer receive support or patches.
Recommendation: Upgrade computers that have operating systems in Extended
Support before end of life.

Inactive computers (15 pts each)


210 Current Score: 15 pts x 14 = 210: 4.42%
Issue: Computers have not checked in during the past 30 days
Recommendation: Investigate the list of inactive computers and determine if they
should be removed from Active Directory, rejoined to the network, or powered on.

Potential disk space issue (68 pts each)


204 Current Score: 68 pts x 3 = 204: 4.3%
Issue: 3 computers were found with significantly low free disk space.
Recommendation: Free or add additional disk space for the specified drives.

Insecure listening ports (10 pts each)


160 Current Score: 10 pts x 16 = 160: 3.37%
Issue: Computers are to be using potentially insecure protocols.
Recommendation: There may be a legitimate business need, but these risks should be
assessed individually. Certain protocols are inherently insecure since they often lack
encryption. Inside the network, their use should be minimized as much as possible to
prevent the spread of malicious software. Of course, there can be reasons these
services are needed and other means to protect systems which listen on those ports.
We recommend reviewing the programs listening on the network to ensure their
necessity and security.

Un-populated organization units (10 pts each)


30 Current Score: 10 pts x 3 = 30: 0.63%
Issue: Empty organizational units (OU) were found in Active Directory. They may not be
needed and can lead to misconfiguration.
Recommendation: Remove or populate empty organizational units.

PROPRIETARY & CONFIDENTIAL Page 6 of 17

You might also like