Cybersecurity Audit for Major Toll Highway Authority

Project Description

One of the nation’s largest tolling authorities contracted with SDI to commission and lead a security audit of the organization’s complete technical environment.

Client Objectives

The Authority asked SDI to assess, document and make recommendations on its environment, with the objective of identifying the Authority’s vulnerability to network-based attacks for the purpose of stealing data or causing harm.

Services Delivered

The scope of the audit included both the production-based PCI environment and the corporate network and application environment (i.e. email, file services, etc.). Over the span of two months, and for the purpose of diversity and completeness, SDI contracted with two data security firms to conduct the audit. The multidimensional assessment included the following phases:

  • Discovery
  • Enumeration
  • Vulnerability Scanning
  • Exploitation
Project Results

While each data firm completed different types of assessments independently of each other, both firms came to similar conclusions in regards to the vulnerability of the Authority’s overall threat profile. SDI detected over 24,000 vulnerabilities in the Authority’s technical environment. After those vulnerabilities were identified, SDI worked with the Authority to prioritize and remediate technical issues that were discovered, establish a formal IT strategy, and determine what security tools or services are required going forward.

Full-Width CTA with 2 Pseudo Overlay Options w/ Background Video Capabilities

Your project isn’t a job for us. It’s a mission that impacts our neighbors, and our families. That’s what it means to be hyperlocal. Let’s work together and design better solutions.

Contact Us