Security

Virtual CISO

• Strategic Security Advisory to CTO/CIO
• Certification and Compliance with Cyber Essentials/Plus/ISO27001
• Technology Selection Reviews
• Pragmatic Advisory on Risk

We provide pragmatic security advice to CTO/CIOs on security matters across technology, we provide deep insight into cloud, internet, network, infrastructure and application security.  We work to enhance an organizations technology strategy by de-risking programs/projects by steering teams and vendors to security focused outcomes.

Managed SOC/SIEM/Threat Hunting

• Managed SOC function
• Elastic Search Technology – huge scale and performance available
• Threat Hunting/Content Writing/Integration of new event sources part of the service

We aggregate your security data from all platforms, be it cloud, SaaS or on-premise, we then observe your normal functioning and work to spot anomalies in your access.  We can overlay your existing security team, or provide that function if you don’t have it.  We pro-actively threat hunt and search and observe.  We have a mixture of staff analysts and external consultants who give us rounded coverage.

Our security monitoring goes wider than just SIEM, we actively monitor your organization across the Internet, see you as the Internet and attackers see you.

Pen Testing

• Internal Networks
• Cloud Tenants/Cloud Services
• Application Pen Tests

We perform pen testing for companies of all sizes.  We offer pragmatic pen testing meaning we wont come back to you with a “successful” list of 93 exploits that can’t practically be exploited.  We will work with you to understand the imminent threats that need to be prioritized and focused on.  We can offer tests on single runs or we can provide an ongoing service where we’ll continue to actively test your systems to find problems.