Datasheet

ManualsBrandsIBM ManualsSoftwareMGD-DT100K-1K

100

Effective Date: through

11/1/2007 1/31/2008

Mana

ed Securit

Services

Professional Securit

Services

AS-XSTP-S

PSS - Security Certification Program

$67,500.00

The Security Certification Program offers an organization the opportunity to receive documented validation of its security “due diligence” via a letter of

acceptance and a Web icon granted by an independent, qualified third party – ISS. In order to become qualified for the Security Certification Program, the

customer’s security controls and practices must meet or exceed ISS’ best practices security criteria, based upon the ISO 17799 standard.

ISS performs the following tests to evaluate and verify that best practices are in place:

-External Perimeter Penetration Test with remote exploitation

-Security Architecture review

-Internal Vulnerability analysis

-Policy and procedure review

-Security Controls and Mechanisms

-Quarterly Perimeter Penetration tests

-Monthly Perimeter Vulnerability Scans

Scope:

Full Perimeter Pen Test

Up to maximum of 2 Class C networks (512 IPs), up to 25 active IPs to be targeted, target will include devices on perimeter, in DMZ or "extranet", and

accessible internal devices

Internal Assessment

1 location,

up to 250 hosts,

up to 2 Databases,

1 Firewall ruleset

Quarterly Light Perimeter Pen Tests

Up to max of 2 Class C networks (512 IPs), up to 25 active IPs to be targeted. Targets will include devices on perimeter only.

Monthly Perimeter Vulnerability Scans

Up to max of 2 Class C networks (512 IPs), up to 25 active IPs to be targeted. Targets will include devices on perimeter only.

*Pricing will vary depending on scope.

DP-Custom-S

PSS - Custom Deployment Services

$250.00

per hour

DP-JPIS-S

PSS- Jumpstart for Internet Scanner

$9,000.00

SS’ JumpStart Service provides rapid, cost-effective security optimization and protection with minimal impact on normal staff operations. ISS deploys the

protection solution technology as well as customizes and integrates the solution for an organization’s unique environment. In addition, your staff has the

opportunity to learn about the new systems first-hand as they are being deployed

The scope of this project includes:

-Installation of the SiteProtector management environment in a distributed configuration.

-Installation of the Internet Scanner systems to provide the best overall assessment options.

-Creation of custom scans policies based on the unique customer environment.

Demonstration of all installation and configuration steps to key personnel for knowledge transfer purposes.

Page 92 of 104

Internet Security Systems - Confidential

Version Number: