While organizations need an experienced CISO to drive critical initiatives and oversee their security programs, not every organization has the budget for a full-time, top-level CISO.
With decades of experience in security consulting and advisory services, Pondurance delivers a vCISO service that applies expertise where it is needed most.
Establish management commitment, organizational accountability and allocation of resources to prepare.
Identify and detect an incident as soon as possible.
Develop procedures to help contain damage and restore affected systems to their normal operating state.
Help develop procedures focused on the removal of threats for infected systems. Pondurance may recommend eradication procedures that are designated for internal execution and others that may be best executed by third parties (i.e., forensic analysis, memory scraping and analysis, system cleaning, etc.).
Develop procedures that provide a basis of recovery for minimum or normal operations.
Develop a process for validating the plan, facilitating tabletop exercises and adopting a lessons learned process from real-world events.
Static application security testing (SAST)
Pondurance performs detailed application security analysis and vulnerability scanning using a comprehensive suite of tools. The testing encompasses the various tiers of the application architecture to provide a deep assessment of critical applications. Areas of testing include, but are not limited to:
Pondurance can help validate both digital and physical security to ensure that your organization has a clear understanding of risk. Whether the engagement begins with spear-phishing an employee or attempting to enter facilities, we’ll first discuss all scenarios with you during a rules of engagement meeting. This discussion ensures that your expectations will be met and our techniques are approved.
Some in-scope procedures for the physical Penetration Testing include:
CHLgroup Address
PHONE NUMBER
info@CHLgroupint.com