Cybersecurity Consulting Services

What we offer:

• Evaluating if the security department is appropriately resourced (leadership and skills to prevent and address known risks) and properly placed within the organizational hierarchy to function efficiently.
• Checking if potential threats and vulnerabilities endangering the company's IT assets are fully outlined.
• Reviewing the existing IT risks.
• Checking if all the necessary measures to identify, protect against, respond to, and recover from cyber threats are in place.

What we offer:

• Determining the processes and IT assets (employees, data, software, infrastructure components) to be covered by the program based on the compliance requirements, business specifics, growth plans, etc.
• Describing the as-is cybersecurity profile.
• Defining the potential threats to the IT processes and assets, detecting vulnerabilities, evaluating the impact and likelihood of security breaches.
• Prioritizing IT security risks.
• Creating the target cybersecurity profile by outlining the planned operational, technical, and managerial security measures.
• Comparing the as-is profile and the target profile to determine gaps.
• Creating a prioritized action plan to address the gaps and adjust the current cybersecurity practices.
• Helping implement the program: e.g., designing the missing policies or processes, conducting employee security training, configuring tools, networks, and apps.

What we offer:

• Security audit: evaluation of administrative and technical security controls in place.
• Vulnerability assessment and pentesting of your IT infrastructure and applications.
• Compliance assessment: checking how well your policies, procedures, and technical controls meet the requirements of HIPAA, PCI DSS/PCI SSF, GLBA, SOC 2, GDPR, ISO 27001, NYDFS, and other standards and regulations.

What we offer:

• Analyzing the specifics of your business, IT environment, and compliance requirements (HIPAA, PCI DSS/PCI SSF, GLBA, SOC 2, GDPR, ISO 27001, NYDFS, and more.).
• Inventorying your IT assets.
• Detecting security flaws in your IT policies, processes (IT operations, development, QA), infrastructures, and software.
• Evaluating the likelihood and the potential impact of vulnerability exploitation.
• Analyzing and prioritizing IT security risks.
• Providing a risk mitigation plan.

What we offer:

• Determining the standards and regulations to comply with (incl. mandatory and voluntary standards).
• Analyzing the existing compliance gaps: e.g., missing policies, procedures, and software/IT infrastructure technical controls.
• Delivering a remediation roadmap.
• Helping implement the processes required to maintain compliance in the long run.

What we offer:

• Planning the security controls for a future app (at the levels of architecture and functionality), taking into account the app's compliance requirements.
• Helping incorporate best security practices in the development process and adopt the DevSecOps approach.
• Performing compliance assessment, code review, vulnerability assessment, and penetration testing to help improve the security and compliance of an existing app.

What we offer:

• Analyzing the assessment scope and purpose (e.g., preparation for HIPAA compliance audit, network segmentation check.)
• Configuring and running automated scanning of IT networks/IT infrastructures (servers, workstations, connecting devices, databases, email services, etc.) and applications (web, mobile, desktop apps).
• Analyzing the scanning results to exclude false positives and classify the detected vulnerabilities by their severity.
• Delivering a final report on the assessment results and the required corrective measures.

What we offer:

• Network pentesting.
• Pentesting of publicly accessible systems: customer-facing apps, IoT systems, email services.
• Pentesting of remote access.

Penetration testing models we employ:

• Black box – our testers simulate real-life hacking attacks by only using publicly available information about the target.
• Gray box – to get comprehensive results quickly, our testers are allowed to use limited info about the testing target (e.g., the network structure, unprivileged user credentials).
• White box – to reveal and explore maximum vulnerabilities, our testers are granted administrative privileges and full information about the testing target: e.g., an app’s architecture and tech stack.

What we offer:

• Phishing – manipulative emails that aim to trick employees into disclosing confidential information or breaking security rules.
• Spear phishing – individual emails targeting specific employees (e.g., responsible for high-level decisions, holding access to restricted information).
• Whaling – individual emails targeting C-level executives.
• Vishing – manipulative phone calls.
• Smishing – manipulative text messages.

What we offer:

• Open-source intelligence – collecting publicly available info about the target company and its IT environment that can be used to plan and launch attacks.
• Vulnerability scanning.
• Social engineering attacks simulation.
• Attempting a series of technical attacks to get unauthorized access to the IT environment, remain undetected, and escalate privileges.
• Comprehensive reporting on the testing results with actionable guidance on upgrading your cyber defense.

What we offer:

• A thorough search for the compromise indicators in endpoints, network traffic, and logs: e.g., anomalous privileged user account activity, suspicious changes in system files, mismatched port-application traffic.
• Profound analysis and detailed description of the findings.
• Clear guidance on the optimal ways to reduce the attack surface or contain an ongoing attack.

What we offer:

• Ensuring all-around network security: network segmentation, firewalls, antimalware, IDS/IPS, EDR, SIEM, SOAR, and more.
• Securing applications at any stage of SDLC: secure architecture design, strong data encryption, input validation, multi-factor authentication, data backups, etc.