Servers, Workstations, Printers, and non-Archive Directory devices (switches/routers/printers).
Old computers which are still joined to the domain and have not been removed.
Systems with missing Patches/Service Packs/Security Updates. Local accounts (per-system) with
weak/insecure passwords. Systems with missing Anti-Virus, Anti-Spyware, or firewall configuration.
Security policy inconsistency across network servers/computers. Outbound system access that should
be blocked. Lack of Content filtering (Social Media, Entertainment, Pornography, Illegal Downloads).
Configuration of user access to Network Shares. Detailed breakdown of Archive Directory Security Group Membership.
Old user accounts which still have access and have not been properly disabled. Internal systems with open ports
that pose a potential security risk. External issues which put your network at risk of business disruption or data loss.