Audit and Compliance
- Security Audits
- To Best Practice
- To external standards
- To internal standards
- Formal methodology
- - Risk Control Matrix
(RCM) - - Derived Issues List
(with Business Impact
Assessment)
- Infrastructure Vulnerability Assessments
- Identify business exposure by identifying vulnerabilities and weaknesses in the IT infrastructure
- Use sophisticated scanning tools and expert analysts to help identify vulnerabilities and determine remediation strategies
- Fraud and Security Breach Investigations
- Attack vectors
- Discrete analysis
- Evidence collection
- Liase with regulatory authorities or law enforcement
- Develop a program to address depth and frequency of vulnerability testing for customers
- Reduce liability and business risk
- Risk Assessments for New and Existing Infrastructures
- Minimize risk exposure
- Viability and risk profile of new project proposals
- Assessment and review of active installations
- Compliance
- PCI DSS fast-track to compliance, SAQ completion
- ISO 27001 certification preparation and review
- Data classification and retention requirements analysis and review
- Penetration Testing
- Internal
- External
- "Black Box"
- Web Facing Applications
- Combination of tools & detailed tailored analysis