Solutions

Threats and Vulnerabilities

Assessing the effectiveness of both internal and external security controls is still an essential part of protecting an organisation, as vulnerabilities will continue to exist in our systems and new threats are discovered daily.  But understanding the changing threats and prioritising vulnerabilities is not a simple task that can be left to automated tools. Assessments can also highlight weaknesses in management and business processes that could be exploited.

Integralis’s threats and vulnerabilities services combine best-of-breed tools with powerful manual analysis to give comprehensive and accurate results. The dedicated team has a wealth of practical industry experience and has all relevant accreditations to enable our customers to have complete peace of mind (CHECK Green Light, PCI ASV). Integralis’s proven track record gives our customers the confidence to make security decisions based on expert advice at business, management and operational levels.

Doing More with Less
As organisations face delivering more with less resources, it has become harder to maintain a comprehensive range of security technology skills. Technical Consulting offers the flexibility of remote deployment and support of information security solutions. Choosing to outsource elements of information security enables internal resources to focus on core activities whilst maintaining full control.

Our approach

Vulnerability Assessment

  • Mainly automated testing with manual validation
  • Gap remediation advice
  • External or on-site assessments

Network Penetration Testing

  • Comprehensive testing of internet-facing systems or key internal systems
  • Use of extensive tool set with deep manual intervention

Web Application Testing

  • Detailed examination of custom websites using tools and manual analysis
  • Comprehensive testing of threats (e.g. SQL injection, cross-site scripting)
  • Usually performed remotely

PCI ASV Scanning

  • Meets PCI DSS requirement for quarterly external scanning by ASV
  • Combination of vulnerability assessment and automated web application testing with manual False Positive removal
  • Combined with other services, fully meets PCI scanning and pen testing requirements

Wireless Access Testing

  • Identification of wireless ingress and egress points (authentic and rogue)
  • On-site assessment
  • Security status testing of all identified connections
  • Meets PCI compliance requirements

Contact Us

Label

Threats & Vulnerabilities
Click to download PDF

406KB

Solution Sheet

Threats and Vulnerabilities

Integralis conducted a proactive analysis of threats and vulnerabilities using a combination of automated tools and expert manual analysis.

Related Links