Audit and secure devices and media.

Audit and secure network topology.

Create secure boundaries using firewalls, DMZs and proxy servers.

Create secure remote access.

Create secure wireless access.

Implement a segmented network.

Implement network traffic security protocols for sensitive network traffic.

Deploy network security technologies.

Implement or harden intrusion prevention/detection systems.

Assess security of current IDS/IPS system or evaluate need for implementing IDS/IPS system.

Assess and harden DMZ or evaluate need for implementing DMZ.

Assess and harden firewall or evaluate need for implementing additional firewalls.

Assess and harden routers, switches, and other network communication devices.

Harden systems.

Evaluate physical security and access control to critical servers.

Review and revise administrative accounts on infrastructure servers.

Implement strong authentication and password policies on all infrastructure devices.

Review, record, and update (as needed) operating system and application version levels.

Review current status of virus protection software installed on servers.

Assess and implement server, application, and client-side security technologies.

Document all infrastructure changes.

Document changes to all infrastructure configuration settings.

Document changes to network topology, layout or structure.

Document changes to standard operating procedures.

Document changes to user policies and procedures.

Perform compliance audit.