www. Bitidentify .com

IS security and intrusion analyze

This analyze is intended for companies and institutions who wish to get their security shield against Internet confirmed by third part, and at the same time test how the staff is acting in various situations and different kind of attacks.

Background and methods

Intrusion attacks with the intention to get hold of secret information or to take control over a system is a constantly expanding curse in IS systems all over the world. The perpetrators, constantly swelling in numbers and improving their techniques, are feeling safe because they mostly run a very little risk of being revealed.

Companies and institutions with high demands on security are often equipped with both hardware and software protection tools with the latest technological standard. It is very seldom you find the weak points in this field; instead it is almost always the staff that is the problem. Security risks increase with an increasing number of personnel, especially when you take on new people. High technology IS security systems also tend to give the staff some overconfidence in the functionality and effectiveness of these tools. The most common intrusion attacks from outside in otherwise secure infra structures are made possible by incautious and credulous personnel.

Vulnerability analyzes and intrusion test

After a thorough analyze of the existing IS structure we will build a test plan for different stages. Our main goal is to test how the staff is acting under various conditions. Phishing and spear phishing in combination with existing IS technology will be used during the test. The result will be an excellent foundation for education and preventive measures with the aim of building a company with a higher level of IS security.

The purpose of the security test

We will use the results from the staffs own experiences of working in the companies IS environment in various situations and from that starting point work out a necessary level of knowledge for the personnel and enhance their consciousness concerning the more and more sophisticated threats against the companies own IS activities.

Our tests and training will improve the staffs IS behavior and we will supply you with all the necessary knowledge for lifting the security thinking to a higher level for all employees.

All our tests will of course be carried through with your permission and without any disturbing impact on your daily activities. All results of the tests will exclusively be used as information and educational material, and as a foundation for the ambition to work out a more secure IS environment at your company. All tests will be subordinated our very strict and long-standing security policy. We make no copies of any data belonging to other companies.