|
Security Assessments Network Penetration – This type of assessment is designed to test you level of vulnerability and risk from unauthorized access to your network. We will develop a comprehensive statement of work in order to define the scope, level of effort and depth of the assessment. Some of these options may include the following:
Applicaiton and Secure Code Assessments – We provide application security assessments in order to confirm or prove the code is securely written and free of obvious vulnerabilities. We use a combination of licensed and open-source software along with professional eyes-on analysis to provide a complete assessment. While the scope of every engagement differs from customer to customer, we will completely scope the engagement in order to provide:
Physical Security – Once we agree to acceptable rules of the game, we will attempt to bypass your security controls. With this, we generally test physical security in order to gain access to your compound, building, offices and/or restricted areas. We will also try to obtain confidential and proprietary information through social engineering, networking, document theft and, where applicable, flirting. Insider Threat – In order to effectively test your network security controls, you must also one very difficult question. How much do I trust those who have access to our company? This often goes well beyond full- and part-time employees. Contractors, delivery personnel, vendors, out-sourced employees, etc. We have developed an entire methodology to assess various facets of insider threats through interviews, testing and assessments. Upon completion of all our assessments, we will provide a complete written report and presentation on our findings, as well as any recommendations that we may have. Our entire staff of security assessment professionals are legitimate security professionals that maintain active security clearances and are free for criminal backgrounds and adhere to extremely high ethical standards. |
