Built on Security ROI

Our professional services use our structured, multi-disciplinary Business Threat Modeling methodology to prevent internal violations with prioritized, cost-effective security countermeasures. We provide consulting, training and advanced security technology services in the following areas:

• Investigations: Investigative audit and forensics including computer forensics after a security event
  

• Audit for SOX, PCI DSS and EU privacy compliance
  

• Vulnerability analysis of customer and supplier-facing Web services

• Quantitative Risk Management of data loss, fraud, corruption and money-laundering.

Consulting

• Investigative auditing after an event is discovered internally. We detect the root causes of the event, quantify the loss in financial terms and propose preventive measures.

• Vulnerability studies of ecommerce, B2B, SaaS and Web 2.0 applications. Includes a systematic threat analysis of users, administrators, network, systems and software.

• Computer fraud and computer forensics

• SOX and corporate governance audits

• Risk management: Risk assessment of exposure to data loss, fraud and money-laundering. Detect volume and type of current violations. Quantify risk exposure to the organization in dollar terms.

• Anti-corruption – connect the dots between common financial elements behind terrorism, narcotics and international crime.

Training

• Onsite training courses, customized training programs

• Seminars

• Executive coaching

• Academic programs in financial criminality.

Advanced data security solutions

• Gigabit network transaction monitoring/data loss prevention  -  Fidelis XPS

• IP/digital asset protection and compliance enforcement at the point-of-use  -  Verdasys Digital Guardian
  

• SCADA network data leakage prevention - Waterfall Systems
  

• IP security camera protection - Waterfall Systems