WE HELP BUSINESSES
KEEP THEIR DATA SAFE,
COMPLIANT AND

PROTECTED

 

SERVICES

Preconstruction Planning

I'm a paragraph. Click here to add your own text and edit me. It’s easy. Just click “Edit Text” or double click me to add your own content and make changes to the font.

Server security consultancy with optional secure hosting

Our system administrators have years of experience and can take a look at your setup to make recommendations on a more secure environment. Additionally we can provide a secure hosting environment for your projects. Secure hosting requires us to review our standards regularly, ensure the latest updates are always available and do a customised setup keeping server hardening in mind. Along with security backup and recovery solutions we ensure that if a failure does happen we have solutions in place for a quick recovery. Archival backups ensure we can refer to older versions.

Compliance,
processes and documentations

We help companies review their application/website, help them getting started with their policies and guide and help them creating documentation and processes for system/network architecture, data classification, data security storage/transmission, password policy, backup policy, encryption protocols and tools, physical security, data retention/disposal, change management, account management, risk management, policy exceptions, asset management, logging policy, monitoring policy, security incident management and business continuity.

System performance check (LAMP environment)

System performance checks are vital on regular basis as they ensure your current architecture is able to take some limited stress as and when needed. This ensures you are better aware of the limitations of the system, and also if the application can be tweaked to reduce its processor/memory requirement which in turn allows the environment to serve more pages and allow more visitors. We can help: create guidelines for testing system performance; in testing your application with stress tests; create reports and make recommendations for changes to achieve faster/better performance.

Coding
review
(LAMP)

Helping your team reviewing their coding strategy keeping security in mind. Avoiding top vulnerabilities like SQL injections, XSS attack. Confirming recommendations from OWASP like injection, broken authentication and session management, cross-site scripting (XSS), insecure direct object references, security misconfiguration, sensitive data exposure, missing function level access control, cross-site request forgery (CSRF), using components with known vulnerabilities, unvalidated redirects and forwards. Our team will review and then advice the best solution forward considering costs for the changes as well.

General
Data Protection Regulation (GDPR)

General Data Protection Regulation (GDPR) is a strong and unified data protection for all individuals within the European Union (EU). You are in scope if you are a data controller (organisation that collects data from EU residents) or processor (organisation that processes data on behalf of data controller e.g. cloud service providers) or the data subject (person) is based in the EU. We can help you ensure meeting the requirements of GDPR and having your policies and practices in place. The regulation was adopted on 27 April 2016 and it becomes enforceable from 25 May 2018.

Application
security
assessments

Our team will test your application using automated and manual penetration testing to identify security weaknesses and provide recommendations for their mitigation. Regularly conducting such tests and doing them when major changes have been done are good practice. Our team specialises in LAMP environments for such tests and uses its own testing methods based on recommendations and guidelines from OWASP, SANS CWE Top 25. After testing our team will release a vulnerability report and analyse the results with your team to help with the remediation.

ABOUT

IT security is a daunting term, as usually its approach is too technical and too expensive. With over a decade of experience in cyber security our effort is to make this more approachable and affordable to our clients. With that in mind, we have built our own processes to help clients meet mandatory security compliance and audits. We can help with setting up processes and policies, documenting them, offer secure environment for hosting, test your applications for vulnerabilities, and help remediating any vulnerability by offering solutions to fix them. Our mixed team members have security experience across OS, network, coding, database, and functionality and processes.

 

BLOG

August 28, 2019

Technical jargon can be confusing and security related ones even more. The terms "SQL injection" and "XSS injection" seem funny as the...

August 12, 2019

While doing a basic code review for a client's web portal (bridging customers and service) we came across potential vulnerabilities whi...

August 2, 2019

Around 8 months back we conducted a non-intrusive security audit for an accounting backend application which involved us going through...

Please reload

 
 

CONTACT

UK Office

The Old Wheel House
31/37 Church Street
Reigate, RH2 0AD 

Tel: +44 1737 887808

Germany Office

Robert-Bosch-Str. 1
Wunderburg
96050 Bamberg

Tel: +49 951 97459999

India Office

307 & 308 Kamat Grand

Behind Caculo Mall, St-Inez, Panaji Goa 403001

Tel: +91 832 2421152

Request a Quote
Also visit our parent company