Cybersecurity Program is basically a large scale inner security development roadmap. It starts with a whole organization analysis, that gives insight on how to help the company resist adversarial attacks. We aim at supporting the organization’s management and security division in the proper implementation of security policies and tools to prepare for future attacks.
As an external team, we’ll try to find all the blindspots that might occur, as some things are sometimes invisible for people working from the inside, and the attacker would surely find them. We’ll test your resistance with a broad spectrum of tools and techniques, starting from simple gateways, finishing on social engineering. These will contribute to the creation of a guideline that will help you fix all the flaws and will harden your systems.
We work with NIST Security Framework standards and according to the Cloud Security Maturity Model. We perform systems hardening according to benchmarks:
- CISA - Certified Information Systems Auditor
- DISA STIG - Security Technical Implementation Guide
- CIS - Center for Internet Security