Consulting
Structured, multi-disciplinary, creative.
Our professional services use our structured, multi-disciplinary Business Threat modeling methodology to delivery creative and cost-effective solutions to mitigate the damage of internal data violations.
We provide consulting, training and advanced security technology services in the following areas:
- Investigations: Investigative audit and forensics including computer forensics after a security event
- Audit for SOX, PCI DSS and EU privacy compliance
- Vulnerability analysis of customer and supplier-facing Web services
- Quantitative Risk Management of data loss, fraud, corruption and money-laundering.
Consulting
- Investigative auditing after an event is discovered internally. We detect the root causes of the event, quantify the loss in financial terms and propose preventive measures.
- Vulnerability studies of ecommerce, B2B, SaaS and Web 2.0 applications. Includes a systematic threat analysis of users, administrators, network, systems and software.
- Computer fraud and computer forensics
- SOX and corporate governance audits
- Risk management: Risk assessment of exposure to data loss, fraud and money-laundering. Detect volume and type of current violations. Quantify risk exposure to the organization in dollar terms.
- Anti-corruption – connect the dots between common financial elements behind terrorism, narcotics and international crime.
Training
- Onsite training courses, customized training programs
- Seminars
- Executive coaching
- Academic programs in financial criminality.
Advanced security technology services
- Wire-speed network transaction monitoring/data loss prevention
- IP/digital asset protection and compliance enforcement at the point-of-use
- SCADA network data leakage prevention
- IP security camera protection