Group 440

Services

CTInfoSec has extensive experience performing security assessments in a variety of industries including insurance, financial services, mobile applications, healthcare, online services, manufacturing, utilities, real estate, business services, and more. It is our focus on the uniqueness of each client that allows us to create a lasting impact and superior output.

  • IT SECURITY HEALTHCHECK

We provide a multi-leveled, custom IT Security Healthcheck of your technology environment leveraging a proprietary stack of tactical and operational checkpoints to deliver an analysis of the environment – within your needs and budget – to identify gaps and risks and provide actionable remediation steps with tiered goals.

  • NARC® DECEPTION NETWORK TECHNOLOGY

Our patented NARC® technology identifies internal compromise or malicious insiders. By creating virtual targets and enticing malicious users to them through open services and potentially valuable data, organizations can root out illegitimate traffic and users quickly and without false positives.

  • EXTERNAL NETWORK PENETRATION TEST

We evaluate your company’s external network presence with an evolving suite of tools and techniques to determine the feasibility of gaining access to private network resources from the vantage point of an external attacker.

  • INTERNAL NETWORK PENETRATION TEST

We leverage the latest tools and techniques available to assess your internal network risk from the vantage point of a trusted insider or a malicious unauthorized user and give you sound strategies for prioritization and remediation of assets.

  • WIRELESS NETWORK PENETRATION TEST

We assess your organization’s wireless environment for sound security including the identification of misconfigurations and vulnerabilities.

  • WEB APPLICATION PENETRATION TEST

We measure the impact of a successful attack on your web services infrastructure using the perspective of an attacker and leveraging the OWASP testing framework and the latest available web application testing toolkits.

  • MOBILE APPLICATION PENETRATION TEST

We evaluate the security of your organization’s mobile applications, for both iOS and Android platforms, to identify potential points of vulnerability and data leakage.

  • REGULATORY ASSESSMENTS

We identify gaps and coverage areas within your internal information technology environment and processes to assess your technology environment against frameworks such as NIST, PCI, HIPAA, and others to help meet your regulatory requirements.

  • SECURITY CONSULTING SERVICES

We partner with you to develop a successful security program offering advisory and analysis based on security best practices and decades of expertise in vulnerability management, incident response, monitoring, architecture, and more.

  • SECURITY AWARENESS CAMPAIGNS

We help you create and implement the appropriate IT security awareness programs for your environment which may include training modules, awareness broadcast emails, documentation, or online or in-person presentations.