a

Technical Assessment



A. External Security Tests

External Perimeter

1. How many public IP addresses?

2. How many domains ?

3. How many sub-domains?

4. How many physical sites?

5. If applicable, are the remote physical sites in VPN (Site-to-Site/Hub & Spoke)?

6. How many data centers?

7. What type of the firewall technology

Web Application Testing

8. Are there any public applications has to be tested?

Yes No
Cloud Computing

9. What is the name of the provider?

10. How many cloud computing environments?


B. Internal Security Tests

Internal Components

11. How many Azure ADs?

12. How many physical servers?

13. How many virtual servers?

14. How many workstations?

15. What type of workstations (Windows, MACs)?

16. What type of work environment (Workgroups/Domain)?

17. How many domain controllers?

18. How many servers are members of the domain controller?

19. How many workstations are members of the domain controller?

20. How many non-member workstations in the domain controller?

21. How many wireless networks?

22. Are there any connected objects (IoT)?

Yes No

23. How many physical workstations are currently being used for telecommuting?

24. How many sub-networks (VLANs) or micro-segmentations?

25. What is the target period to start the assessment?

C. Expected Period

25. What is the target period to start the assessment?