Signed in as:
filler@godaddy.com
Thank you for your interest in our Skybox Services
Understand your Skybox Security
You or your clients invested in Skybox security. We assess whether the expected return on investment is achieved.
Scope of Skybox 360 Assessment
Skybox Technical Assessment
Skybox Functional Assessment
Skybox Functional Assessment
Our technical assessment service looks at how the operating system and Skybox application are installed, managed, secured and backed up.
Skybox Functional Assessment
Skybox Functional Assessment
Skybox Functional Assessment
This part of the assessment looks at data quality in Skybox, model validation, collection tasks and processes to ensure timely resolution of any application and data issues.
Integration of Skybox to your processes assessment
Integration of Skybox to your processes assessment
Integration of Skybox to your processes assessment
This area of the assessment looks at how the Skybox analysis results, reports and metrics are used in your organisation to drive the company’s cyber security and other processes.
Skybox 360 Assessment FAQs
Integration of Skybox to your processes assessment
Integration of Skybox to your processes assessment
Do you have questions? We have answers!
Skybox Technical Assessment
Our technical assessment service looks at how the operating system and Skybox application are installed, managed, secured and backed up.
Operating system management and platform security
We check the operating systems of Skybox servers and collectors are managed correctly and are up to date. We will also check the security access for the IT staff managing the Skybox servers.
Availability and capacity management
We check the process, technology and people controls related to the monitoring of the availability of your Skybox application. This includes Disk space, CPU usage, memory usage, network capacity and database IOPS for both Skybox servers and collectors, and integration with other key systems (such as DNS, email, Internet access). We will advise the customer of any sizing issues and optimisations.If Skybox is configured in High-availability state (HA), we also check that its health and recovery process is related to any high-availability issues.
Licence management and monitoring
We will check the number of objects in the model, compared them to purchased licenses, and produce an analysis of optimal licenses needed for the current use cases.
Skybox software updates and upgrades
We assess your processes to keep Skybox applications up to date – both on server and client sides. This includes an assessment of how the company monitors for available Skybox application updates and initiates an update process.
The key areas we check:
- Keeping Skybox server(s) and all collectors up to date to minor versions: an SLA should be agreed with respect to versions and speed of updates
- Upgrading to new major versions - an SLA should be agreed with respect to versions and speed of upgrades
- Upgrading the ISO version of a Skybox appliance (where applicable) - an SLA should be agreed with respect to versions and speed of upgrades
- Testing updates and upgrades in a test environment
Backup and restore
We assess your ability to restore Skybox service within acceptable RTO with agreed RPO and accompanied documentation.
Skybox Functional Assessment
This part of the assessment looks at data quality processes in Skybox, model validation, collection tasks and processes to ensure timely resolution of any application and data issues. Where a CMDB is in place, we also assess reconciliation processes between the CMDB and Skybox database.
Skybox network model maintenance
The key success criteria in any Skybox deployment where a network model is licensed (NA and/or VM modules) is a fully network validated Skybox model. We will assess the current network validation status as well as processes pertaining to keeping the model validated. Some aspects we look at:
- The “Locations & Networks” structure is correctly representing the client’s current Layer 3 networks
- The Skybox model is validated, and the validation progress is measurable
- Processes to bring the network model from an invalidated to a validated state
- Whether any regular reviews of the network architecture with your network teams have happened to assert that the Skybox network model is accurate
Maintenance of Skybox network maps
A visual representation of the Skybox model using network maps presents an advantageous feature. We will assess the map maintenance process in Skybox.
The key areas we assess are:
- The maps are available for users to view
- The maps are up to date with the latest network and asset model changes
CMDB imports & correlations
For Skybox to deliver the business value, it needs assets to be enriched with CMDB metadata. As part of this assessment, we review frequency, scope of imports and follow up correlation of CMDB metadata to Skybox.
This includes technology and process review, especially to ensure that the CMDB data is imported correctly and delivers business value.
On-boarding and decommissioning of network devices
The quality of the network model is directly dependent on collections of configurations from all L3 network devices. We will assess your processes to ensure that network devices, that build network model, are properly on/off-boarded. This is especially important for devices being on-boarded, i.e. new L3 devices taken from provision state to production state in CMDB.
Business asset model
Grouping of assets to business asset groups allows for multiple viewpoints on the vulnerability data, aiding stakeholder reporting. We will assess your Business Asset Grouping structure and associated processes to keep the structure up to date and relevant.
Firewall and Network Assurance policies management
Where FA and NA licenses have been purchased, we will assess policies and zones, as well as associated processes to keep these up to date.
The policies are of type:
- Access policy – Zone From-To policy, typically used for zone-to-zone access rules. Access policy requires zones assigned to interfaces on firewalls
- Rules policy – zone agnostic rules related to firewall rules
- Configuration policy – configuration security hardening of firewalls & routers
Management of Skybox tasks
As part of this assessment, we will review processes to ensure tasks are maintained and monitored correctly, as well as current setup of tasks and tasks sequences. The process review will cover:
- Adding new import and collection tasks
- Changing existing tasks
- Modifying tasks sequences and schedules
- Removing jobs no longer needed
- All tasks are running as per agreed plan without errors
- Changes to tasks are made within the agreed SLA
Skybox User, Roles and Access rights management
Usually, Skybox is setup and configured as part of the project phase, and this includes the right access roles and users. Our review will ensure that organisational changes are correctly reflected in the Skybox user access control design.
Integration of Skybox to your processes
Skybox usage Processes Assessment
This area of the assessment looks at how the Skybox analysis results, reports and metrics are used in your organisation to drive the company’s cyber security and other processes.
The key areas included in our assessment are:
- Reports created and their distribution
- User satisfaction with the reports content, usefulness, and format
- Integration with other cyber security and IT tools
- Any metrics related to key Skybox capabilities, such as vulnerability management and network assurance
- Perceived and potential (gap) value of Skybox
People engagement and knowledge assessment
The planned value of the investment in Skybox is only going to be delivered if the people using it, and its results, are engaged and trained.
In our 360 Assessment, we will interview key stakeholders to obtain their feedback and assess their level of knowledge of the Skybox software, its reports and any reliance on the Skybox analysis.
Skybox 360 Assessments FAQ
We have collected the frequently asked questions our customer asked us before the assessments. Cannot find your question? Ask us and our friendly team will respond promptly.
What access to Skybox is required?
Preferably, we use full admin access to both Skybox application and underlying servers. If this is not possible, we can work in screen sharing session with your IT team to run scripts we have developed to obtain necessary information.
Is our data copied outside of our network?
With your permission, our script copies the diagnostic data collected, and the Skybox model to our secure storage, to be analysed by our experts. If this is not possible, we ask you to provide a secure server inside your network.
What effort from our internal team or 3rd parties is required?
Typically, with full access, the amount of interactions is limited to 4-6 hours total with the IT team managing Skybox, and up to 10 hours total interview time with stakeholders using the Skybox application and data.
How long does an assessment take?
The length of time depends on the complexity of the model and size of the Skybox installation, e.g. number of servers and collectors. The time to deliver the report can be as quick as 2 weeks and as long as 2 months, especially if stakeholders are not available for interviews or our team not having direct access to the Skybox application.
What is the cost of an assessment?
For small Skybox installations - 1 Skybox server and 1 collector with up to 50 network devices in the model, the cost is fixed to GBP 5000. For larger installations the cost is GBP 10000. However, if the customer later orders our managed services, the cost of the assessment is deducted from the service on-boarding fee.