About UsCyber-ThreatComplianceEnterpriseConsultingGSA ScheduleCareersContact

KCG's Vulnerability Assessment capabilities combine operationally proven methodologies with dedicated, experienced professionals to provide a comprehensive solution to an organization's risk assessment requirements. Our methodologies and approach are based on assessing system risks and prioritizing their criticality based on an analysis of threats, in concert with the accurate characterization of the business and data sensitivity requirements of the organization. KCG's Vulnerability Assessment services enable an organization to obtain an immediate and accurate understanding of the critical threats to the existing infrastructure while providing a detailed roadmap for prioritizing, addressing, and mitigating risks. KCG's service offerings in this area include:
  • Develop Vulnerability Assessment plan
  • Develop System Characterization Report documenting system criticality, interconnectivity of systems, system relationships, criticality of data, etc.
  • Execute Vulnerability Assessment Plan using various COTS and open-source vulnerability assessment tools and KCG's internal Tool Kit incorporating various internally developed technologies, processes, and software.
  • Document Vulnerability Assessment results encompassing requirements from agencies including NIST, DOD, OMB and CIA, as well as industry-specific best practices.
  • Validation of internal assessment findings
  • Develop and Implement Remediation Plans
  • Work with Vulnerability assessment tools (ISS Internet Scanner, Nessus, eEye Retina, auditing tools such as ArcSight)
  • Provide targeted security assessments to application / solution developers during the development process to ensure security concerns are mitigated prior to deployment