Risk/vulnerability assessment and penetration testing

Fully embracing international security standards such as ISO 27000 series and OMMST/OWASP framework, we offer a multi-tiered risk and vulnerability assessment and penetration testing on IT resources from infrastructure, data and information to applications and business processes, including:
  • Security best practice assessment
  • Perimeter network security assessment
  • Internal network security assessment
  • Network devices and security appliances (Firewall, IDS/IPS, VPN, Remote Access, Two-factor authentication) security assessment
  • Wireless security assessment
  • Servers hardening security assessment
  • Client host and device security assessment
  • Application design and code assessment
  • Database security review
  • Cloud security review
  • Mobile and BYOD security review
  • VoIP security review
  • Security administrative process assessment