Seguridad en servidores empresariales. Control y análisis de configuraciones de seguridad y de vulnerabilidades

Illa Gay, Ramon

Please use this identifier to cite or link to this item: http://hdl.handle.net/10609/95326

Title:	Seguridad en servidores empresariales. Control y análisis de configuraciones de seguridad y de vulnerabilidades
Author:	Illa Gay, Ramon
Director:	Garcia-Font, Victor
Tutor:	Canto Rodrigo, Pau del
Abstract:	Enterprise server's security is critical for enterprise operation. The non-availability of applications hosted on servers can cause significant economic and prestige impact for the companies. For this reason, it is very important for companies to maintain a high level of security in their servers. The main objective of this work is the definition of the processes for the continuous validation of the security of the servers, mainly validating the correct security configuration and their possible vulnerabilities due operating system versions or installed applications not updated. This work is done in the Spanish branch of a multinational company, which has corporate security policies based on ISO27001. One of the pending controls to implement refers to the security of the servers, which is completely aligned with the objectives of this work. There are about 100 virtual servers in the company, most of which use a version of Windows server as their operating system. A market study will be conducted to select the possible solutions to be used for the vulnerability and security configuration control. Open Source and commercial solutions will be evaluated. Once the solutions have been selected, they have been tested, configured and a process has been defined for the continuous control of server security.
Keywords:	vulnerability management server hardening SCAP
Document type:	info:eu-repo/semantics/masterThesis
Issue Date:	1-Jun-2019
Publication license:	http://creativecommons.org/licenses/by-nc-nd/3.0/es/
Appears in Collections:	Bachelor thesis, research projects, etc.