Security
- Security
- Security Services
- Product Offering
In February 2006, Bank of America and Washington Mutual canceled and reissued over 200,000 debit cards due to a breach in security. In May 2005, 40 million credit card numbers were stolen from a credit card payment processor. A week before that, tapes of encrypted information on 3.9 million customers were lost by the United Parcel Service while in transit to a credit bureau.
While these situations primarily involved financial institutions and credit card companies, they all have one thing in common with your company's database—valuable customer information.
That's why, in today's business world, protecting your customer's data is just as important as protecting your company data. Just look at the mounting compliance issues surrounding government regulations such as
While these situations primarily involved financial institutions and credit card companies, they all have one thing in common with your company's database—valuable customer information.
That's why, in today's business world, protecting your customer's data is just as important as protecting your company data. Just look at the mounting compliance issues surrounding government regulations such as
- HIPAA
- Sarbanes-Oxley
- Patriot Act
- Gramm-Leach-Bliley
Pearl Technology will help your company develop the right security posture by identifying where your network may be vulnerable and implementing effective security solutions.
Our Security Services include:
Our Security Services include:
- Security Assessment/Audit
- Security Roadmap Definition
- Current Posture to Industry Standards
- Penetration Testing
- Disaster Recovery Planning
Information Security Management System Consulting
An Information Security Management System (ISMS) is a process approach to managing information security within an organization.
Based on ISO standards 27001 and 27002, the design and implementation of an
organization's ISMS is influenced by their needs and objectives, security requirements, the processes
employed, and the size and structure of the organization. These and their supporting systems are expected to
change over time. It is expected that an ISMS implementation will be scaled in accordance with the needs of
the organization, e.g. a simple situation requires a simple ISMS solution.
Audits
Based on a qualitative risk analysis of your organization's security posture, a Pearl Technology security audit incorporates five steps:
- The Organizational Interview identifies the company's desired outcome.
- The Interview phase delivers a formal risk assessment questionnaire to define risk and defense.
- The Examination phase involves an audit of risks, threats, and vulnerabilities.
- The Evaluation phase assesses the information gathered in the Interview and Examination phases.
- The Reporting phase finalizes the audit with an assessment report.
External Vulnerability Scanning
For any organization's strategy, security is a major concern due to the constantly changing and expanding cyber realm. Higher-risk businesses or entities—government, financial, medical, personal assistance, consultants, and educational facilities, for example—carry even higher risks due to necessary sensitive or destructive stored data. Testing one or several aspects of security on a regular basis can greatly decrease the risk of compromise to an organization.
To address these needs, Pearl Technology performs and compares several different scans on external IP addresses provided by your organization. These assess the risk and possible vulnerabilities of the currently placed perimeter securities and gather information to test against current known exploits that may expose sensitive or critical data to unwanted parties.
Pearl's External Vulnerability Scans include Port Scanning, Service Availability, Name Resolution, Operating System Types, Bandwidth Tolerance, Vulnerabilities, and Exploits.
To address these needs, Pearl Technology performs and compares several different scans on external IP addresses provided by your organization. These assess the risk and possible vulnerabilities of the currently placed perimeter securities and gather information to test against current known exploits that may expose sensitive or critical data to unwanted parties.
Pearl's External Vulnerability Scans include Port Scanning, Service Availability, Name Resolution, Operating System Types, Bandwidth Tolerance, Vulnerabilities, and Exploits.
Ethical Hacking (Penetration Tests)
An Ethical Hacker is an individual entrusted by an organization to undertake an attempt to penetrate networks and/or computer systems using the same methods as an illegal hacker. Ethical Hackers are recruited by a company, are under contract with that organization, and are given authorization to probe for weaknesses that illegal hackers could possibly exploit.
Pearl Technology uses an attacker emulation and attacker motivation methodology, divided into four distinct levels. Take advantage of our expertise in Ethical Hacking. We'll defend your organization from hackers by beating them at their game before they have a chance to capitalize on your weaknesses.
View a diagram of Pearl Technology's Penetration Test methodology
Pearl Technology uses an attacker emulation and attacker motivation methodology, divided into four distinct levels. Take advantage of our expertise in Ethical Hacking. We'll defend your organization from hackers by beating them at their game before they have a chance to capitalize on your weaknesses.
View a diagram of Pearl Technology's Penetration Test methodology
View Additional Services
Security News
| Thu, 20 Nov 2008 16:01:56 EST Microsoft kills OneCare security suite OneCare will be phased out in 2009 in favor of a free security suite code-named "Morro." |
| Thu, 20 Nov 2008 12:01:37 EST Phishing, malware laden USB sticks stoke holiday attacks IBM's ISS division said consumers and businesses face increased security risk as cybercriminals take advantage of the holiday season with phishing and malware laden USB sticks. |