Home
ContactOne eSecurity Services
Assessment
The First Step in order to secure your organization is to Assess your current Security Measures. We can help you identify your most critical Assets and the most dangerous Threats they face by means of:
| * | Security Audits | * | Vulnerability Assessments | |
| * | Risk Assessments | * | Penetration Tests |
We will show you how you compare with the rest of the industry, and where you should put your efforts and your investment to efficiently improve your status.
Our Governance & Compliance Division will assist you aligning security requirements with business objectives through a risk-driven approach that will result in a more effective use of security technologies. Our GRC services provide Guidance in defining enterprise-wide security in accordance with standards, laws and business requirements such as:
| * | ISO 27001 | * | SOX | * | Basel II | * | ISO 20000 (ITIL) | |
| * | COBIT | * | BS 25599 (BCP) | * | PCI | * | Data Protection |
Additionally, our security engineers can assist you designing and implementing an effective security framework, including the automation, aggregation, analysis and reporting of IT security controls. One eSecurity approach to GRC services is unique in that we can tell you What To Do and, more interestingly, based on our deep technical knowledge and business experience we can also tell you How To Do It.
Protection
The Second Step after assessing your security is to deploy the appropriate mechanisms to Protect your Networks, Systems and Applications, as well as your Data and your Users. A myriad of different technologies exist, but none of them is effective on its own. Let us define the best combination of technologies and processes to take your Security to the appropriate level. And if you need help with the implementation of those measures, our engineers will give you support throughout the process.
We specialize in several services that address the most relevant Protection needs of the large enterprise:
| * | Security Architecture Design & Review | * | Intrusion Prevention Systems | |
| * | UNIX Security | * | Wireless Networks Security | |
| * | Security of Network Devices | * | Database Security |
Detection
The Third Step once you have deployed your Protection Mechanisms is to make sure that they work as expected. Attacks, Misconfigurations, Bugs or Technology Limitations can make your defenses fail. If that happens you need to be sure you promptly detect the problem in order to fix it.
Just as with Protection mechanisms, it is important to identify the best possible combination of Detection mechanisms and place them in the right places. But more importantly than that, in order to make Detection effective it is crucial to tailor your Detection Systems to your own environment once they are in place or they will fail miserably.
We specialize in the Design, Deployment, Configuration and Fine-Tuning of Detection Technologies such as:
| * | Intrusion Detection Systems | * | Log Integration & Correlation | |
| * | Honeypots & Honeynets | * | Security Event/Information Management (SEM / SIM) |
Reaction
The Fourth and Last Step in the eSecurity Roadmap is Reaction. Incidents happen all the time in most organizations and many don't even notice: Malware Infections, System Break-Ins, Unauthorized Access, Corporate Policy Violations, Compromise of Confidential Data, Corporate Espionage, Intellectual Property Theft, etc.
The difference of being able to stop them before they cause real damage is a question of readiness. We can help you Design and Deploy an internal Incident Response Capability, and our Forensics Division can assist you in case an Incident has already happened.
One eSecurity provides Corporations and Law Firms with services such us:
| * | Incident Response | * | Computer Forensics | |
| * | Malware Analysis | * | Digital Investigations | |
| * | Litigation Support | * | Expert Witness |
Training
One eSecurity can help you cover your Security Training needs through the SANS Institute training programs.