| Q3/2010 |
Managed security service provider |
Switzerland |
Web application security audit of a central platform
|
| Q3/2010 |
Mechanical engineering group
|
Switzerland |
Worldwide
security audit of hundreds of systems in various DMZs by means of security
scans, penetration tests and an application security audit
|
| Q3/2010 |
Major bank
|
Switzerland |
Business continuity management coaching and conceptual audit of the data centers
|
| Q2/2010 |
Telecommunications group
|
Switzerland |
| Web application security audit of a business platform |
| Q2/2010 |
Cantonal bank
|
Switzerland |
| Conceptual and technical security audit of a RAS solution |
| Q2/2010 |
Building automation and system integration group
|
Switzerland |
Security audit (penetration test of the systems in the DMZ and security check of the WLANs by war walking)
|
| Q2/2010 |
Credit card
company
|
Austria |
| Information
security policy coaching (support of the client in consolidating
existing guidelines and producing ISO/IEC 27002 compliant documents) |
| Q2/2010 |
Business consultancy
|
Switzerland |
| DMZ
and LAN penetration test (in-depth technical security check of the
systems in the DMZ and various systems and applications in the LAN) |
| Q2/2010 |
Telecommunications
group |
Switzerland |
Conceptual
and technical security audit of a VoIP platform
|
| Q2/2010 |
Cantonal tax administration |
Switzerland |
| Application
security audit (comprehensive technical security check of the core
business application) |
| Q1/2010 |
Pharmaceutical
group |
France |
| Web
application security audit (in-depth technical security check of a CMS
and various international websites) |
| Q1/2010 |
Bank |
Switzerland |
| Web
application security audit (comprehensive security check of a webserver) |
| Q1/2010 |
Telecommunications
group |
Switzerland |
| Security
audit (conceptual and technical security check of a printing platform) |
| Q1/2010 |
Global mobility
provider |
Switzerland |
| Application
security audit (comprehensive security check of an appliance incl.
reverse engineering) |
| Q1/2010 |
Insurance group |
Austria |
| Web
application security audit (security check of an application and the
vpn access) |
| Q1/2010 |
Cantonal tax
administration |
Switzerland |
| Security
awareness speeches (awareness training of all employees by three target
group-oriented speeches) |
| Q4/2009 |
Technology
company for the global construction industry |
Liechtenstein |
| IT security
coaching related to the consolidation and the development of the IT
security guideline (according to ISO/IEC 27002) |
| Q4/2009 |
Wireless and
hearing systems group |
Switzerland |
| Security
audit (comprehensive security check by remotely conducted application
security audits and security scans in the LAN) |
| Q4/2009 |
Trade fair and
congress company |
Switzerland |
| Web
application security audit (technical inspection of the implementation
of the measures by privileged and unprivileged tests) |
| Q4/2009 |
Mobility club |
Switzerland |
| Conceptual
security audit (review of the security-related documents and processes
by means of document grinding, interviews and gap analysis and
proposition of measures) |
| Q4/2009 |
Metal
construction company |
Switzerland |
| Incident
response: analysis and conducting of a virus disinfection |
| Q4/2009 |
Pension fund |
Switzerland |
| Review
of a security concept and of the guidelines for use of information
technology as well as the development of an IT surveillance guideline |
| Q4/2009 |
ICT outsourcing
company |
Switzerland |
| Web service
security audit of a central information gateway |
| Q4/2009 |
Printing and
publishing company |
Switzerland |
| Server
analysis (analysis and disinfection of a malware infected server) |
| Q4/2009 |
Informatics
service provider |
Switzerland |
| Security
review (comprehensive conceptual and technical security check conducted
by document grinding, penetration tests as well as network tracing and
firewall ruleset audits) |
| Q4/2009 |
Insurance company |
Switzerland |
| System audit
(Technical security check of a client-image for notebooks) |
| Q4/2009 |
Insurance group |
Switzerland |
| Penetration
test (technical security check of the gateway infrastructure by remote
conducted penetration tests) |
| Q4/2009 |
Distribution
center of a retail group |
Switzerland |
| IT strategy
coaching (incl. wording of the document) |
| Q4/2009 |
Telecommunications
group |
Switzerland |
| Security
audit (conceptual and technical security check of an IT infrastructure) |
| Q4/2009 |
Real estate
service provider |
Switzerland |
| IT strategy
coaching (incl. wording of the document) |
| Q4/2009 |
Printing and
publishing company |
Switzerland |
| Security
audit DMZ (technical security check by remote conducted security scans
and penetration tests) |
| Q4/2009 |
Telecommunications
group |
Switzerland |
| Security
audit (conceptual and technical security check of an IT infrastructure) |
| Q4/2009 |
Telecommunications
group |
Switzerland |
| Security
audit (conceptual and technical security check of a mobile
infrastructure) |
| Q4/2009 |
Wealth management |
Switzerland |
| Security
audit (technical security check of the IT infrastructure by remote and
onsite conducted security scans and penetration tests) |
| Q4/2009 |
Insurance group |
Switzerland |
| Synchronization
basic services (gap-/feasibility study about the consolidation of the
IT basic services of various country subsidiaries) |
| Q4/2009 |
Credit card
company |
Austria |
| Ethical
hacking (technical security check of the IT infrastructure by targeted
hacking attacks with the aim to discover design based security holes) |
| Q4/2009 |
Telecommunications
group |
Switzerland |
| Security
audit (conceptual and technical security check of a LDAP infrastructure) |
| Q3/2009 |
Insurance group |
Switzerland |
| Solution
evaluation and preparation of the RFP document in the IT network field |
| Q3/2009 |
Power and
automation technologies group |
Belgium |
| Web
application security audit (security check of a multi-tenant capable
web based facility management solution) |
| Q3/2009 |
Agency for
marketing communication |
Switzerland |
| DMZ
& LAN IT security audit (security audit by security scans in the
LAN and in the DMZ and penetration tests of various web applications
and of the website) |
| Q3/2009 |
Logistic company
of a retail group |
Switzerland |
| Coaching
related to the development of the IT strategy and the IT security
guideline (ISO/IEC 27002-compliant) |
| Q3/2009 |
Financial service
provider |
Germany |
| Implementation
of the IT security management process (comprehensive realization of all
process steps incl. detailed auditing of a complex web area) |
| Q3/2009 |
Private bank |
Liechtenstein |
| Web
application security audit (remotely conducted security assessment of
the application with special focus on the e-mail token function) |
| Q3/2009 |
Cantonal bank |
Switzerland |
| Security
audit RAS solution (remote penetration test and configuration review) |
| Q3/2009 |
Pension fund |
Switzerland |
| LAN
penetration test & conceptual audit (on-site penetration test and
organizational and application baseline analysis) |
| Q3/2009 |
Cantonal tax
administration |
Switzerland |
| LAN
penetration test (on-site penetration test, installation and short
introduction of the security scanner Nessus and related training of the
client's project team) |
| Q3/2009 |
Private bank |
Switzerland |
| Risk analysis
(conceptual evaluation incl. risk analysis of the planned RAS solution
variants) |
| Q3/2009 |
Private bank |
Switzerland |
| Application
audit (holistic examination of a client server core application with
foci functionality and IT security) |
| Q3/2009 |
Financial service
provider |
Germany |
| Software
evaluation (evaluation of information security management system
software) |
| Q2/2009 |
Cantonal bank |
Switzerland |
| Firewall
penetration test & application security audit mobility server
(remotely conducted penetration test of the firewall and web
application security audit of the mobility server) |
| Q2/2009 |
Private bank |
Switzerland |
| Baseline
analysis (ISO/IEC 27002-compliant conceptual and technical audit of the
whole IT processing landscape and infrastructure) |
| Q2/2009 |
Waste management |
Germany |
| Security
audit (conceptual and technical security check of the whole IT
infrastructure) |
| Q2/2009 |
Wireless and
hearing systems group |
Switzerland |
| Coaching on
development of the IT security strategy and the IT security guideline
(ISO/IEC 27002-compliant) |
| Q2/2009 |
IT company |
Austria |
| Architectural
security consulting for improvement of a data management system |
| Q2/2009 |
Retail group |
Switzerland |
| VoIP security
audit (penetration test of the whole Voice over IP infrstructure) |
| Q2/2009 |
City
administration |
Germany |
| Penetration
test and firewall rule set audit (technical security check from the
perspective of an external attacker and detailed audit of the firewall) |
| Q2/2009 |
Media group |
Switzerland |
| Conceptual
process and risk analysis related to network bridging |
| Q2/2009 |
Power and gas
group |
Germany |
| Penetration
test (technical security check of an intranet system) |
| Q2/2009 |
Major bakery of a
retail group |
Switzerland |
| Security
audit (remote penetration test of the systems in the DMZ, footprinting
and war driving) |
| Q2/2009 |
Training center |
Germany |
| Web
application security audit and penetration test (technical security
check of a web environment and of the internet access) |
| Q2/2009 |
Private bank |
Switzerland |
| Webserver
penetration test (comprehensive security check of the webserver
operated by a provider) |
| Q2/2009 |
Car manufacturer |
Germany |
| Web
application security audit (technical security check of a web area with
many database accesses) |
| Q2/2009 |
Software producer |
Switzerland |
| Coaching of
the client by means of a web application security audit of the client’s
application |
| Q2/2009 |
E-business
service provider |
Germany |
| Web
application security audit (technical and architectural security check
of an e-business platform for dispatching of newsletters) |
| Q2/2009 |
Media company (television) |
Switzerland |
| Security
process review based on existing policies and best practices |
| Q2/2009 |
Telecommunications group |
Switzerland |
| Web application security audit
(technical security check of a client portal) |
| Q2/2009 |
Tool manufacturer |
Switzerland |
| Incident
response: Malware disinfection coaching |
| Q1/2009 |
Power and gas
group |
Germany |
| System audit (comprehensive
technical security analysis of a complex system infrastructure) |
| Q1/2009 |
ICT outsourcing
company |
Switzerland |
| Web
application security audit (security check of the administrative
application for third party webhosters) |
| Q1/2009 |
Clothing group |
Austria |
| Web
application security audit (technical security check of two web shops
and coaching of the client's project team) |
| Q1/2009 |
Corporate group
administration |
Switzerland |
| Application
security audit Sharepoint server (comprehensive security check of the
platform operated by a provider) |
| Q1/2009 |
Business, law and
tax consulting company |
Italy |
| DMZ remote
security audit (penetration test of the systems in the DMZ) |
| Q1/2009 |
Media group |
Switzerland |
| Security
audit (security check of the IT infrastructure of several group
companies by means of DMZ penetration tests and LAN security scans) |
| Q1/2009 |
Software and
hardware distribution group |
Germany |
| Security
audit (conceptual and technical internal IT security check of several
applications and components) |
| Q1/2009 |
Telecommunications
group |
Switzerland |
| Application
audit of the central network configuration platform |
| Q1/2009 |
Radio station |
Switzerland |
| Incident
response: web portal security audit |
| Q1/2009 |
Financial service
group |
Germany |
| Social
engineering (on-site assessment of the physical access protection at
all main locations) |
| Q1/2009 |
Real estate
service provider |
Switzerland |
| Application
security audit of the secure file exchange system |
| Q1/2009 |
Power group |
Switzerland |
| System audit
(comprehensive technical security check of two application servers) |
| Q1/2009 |
Dental clinic
|
Germany |
| Security
audit (conceptual and technical security check of the whole IT
infrastructure) |
| Q1/2009 |
Media company (television)
|
Switzerland |
| Penetration
test server (intensive security audit of an exposed application server) |
| Q1/2009 |
Power company |
Switzerland |
| Security audit (penetration
test of the systems in the DMZ and security scan of selected systems in
the LAN) |
| Q1/2009 |
Retail group |
Switzerland |
| Incident
response: analysis, planning and conducting of the virus disinfection
and coding of an appropriate node detection tool |
| Q1/2009 |
Leading software
and hardware distributor |
Germany |
| Security
audit (conceptual and technical internal IT security check of several
applications and components) |
| Q1/2009 |
Telecommunications
group |
Switzerland |
| Conceptual
security audit of the central DSL infrastructure |
| Q1/2009 |
Insurance group |
Switzerland |
| Incident
response: analysis, planning and conducting of the virus disinfection
and coding of an appropriate removal tool |
| Q4/2008 |
ICT outsourcing
company |
Switzerland |
| DMZ
penetration test (security audit of the wholesale webhosting platform) |
| Q4/2008 |
Power and gas
consortium |
Croatia |
| Overall
technical security audit of the IT infrastructure |
| Q4/2008 |
Telecommunications
group |
Switzerland |
| Conceptual
and technical security audit of the VoIP infrastructure |
| Q4/2008 |
E-business
service provider |
Germany |
| Re-audit of a
critical core business system |
| Q4/2008 |
ICT outsourcing
company |
Switzerland |
| Web service
security audit of a central information gateway |
| Q4/2008 |
Global
organization |
Switzerland |
| Web
application security audit (remotely conducted penetration test of a
web application incl. partial code review) |
| Q4/2008 |
Private bank |
Germany |
| DMZ
penetration test (remotely conducted security audit of the systems in
the DMZ incl. citrix infrastructure) |
| Q4/2008 |
Food importing and processing
operation
|
Switzerland |
| Disaster
recovery plan coaching |
| Q4/2008 |
Power and gas
consortium |
Italy |
| Internal and
external technical security audit |
| Q4/2008 |
Producer of
military vehicles |
Switzerland |
| 1 day
security scanner training of the international security team |
| Q4/2008 |
Private bank |
Liechtenstein |
| Web
application security audit (penetration test of the CMS) |
| Q4/2008 |
Outsourcing
company |
Switzerland |
| DMZ and LAN
penetration test (comprehensive security audit of all servers and
network components in the DMZ and the LAN) |
| Q4/2008 |
Private bank |
Switzerland |
| Web
application security audit (security audit of the mobile part of an
internet banking application) |
| Q4/2008 |
Consulting firm
|
Switzerland |
| Application
reverse engineering (application security audit with special focus on
the resistance of its license management module against cracking) |
| Q4/2008 |
Power and gas group
|
Germany |
| Conceptual
security audit (ISO/IEC 27001-compliant analysis of the security level
of two IT companies by means of questionnaires and interviews and
coaching of the client’s project teams) |
| Q4/2008 |
Tourism group |
Switzerland |
| Incident
response: web portal security audit |
| Q4/2008 |
Pharmaceutical group
|
Switzerland |
| DMZ
security audit (remotely conducted technical security tests of all
reachable systems in several DMZ’ by security scans and penetration
tests) |
| Q4/2008 |
Producer of off-road vehicles
|
Germany |
| Definition
of a project roadmap for the optimization of the IT security, based on
the results of the formerly conducted security audit. |
| Q4/2008 |
IT service provider
|
Switzerland |
| Web
application penetration test (remotely conducted penetration test of a
multi tier web application) |
| Q4/2008 |
Private bank
|
Switzerland |
| DMZ
penetration test (remotely conducted security audit of the systems in
the DMZ and audit of the firewall ruleset) |
| Q4/2008 |
Power and automation technologies
group
|
Switzerland |
| Application
security audit (comprehensive security audit of an application
including reverse engineering) |
| Q4/2008 |
Power and gas group
|
Germany |
| DMZ
& web application security audit (Europe-wide security audits by
remotely conducted web application security audits, penetration tests
and security scans) |
| Q3/2008 |
Pension fund
|
Switzerland |
| Review of the
Outsourcing Service Level Agreement (SLA) and coaching of the client |
| Q3/2008 |
ICT outsourcing company
|
Switzerland |
| Production of
an IT security factsheet covering the levels of operating system and
applications |
| Q3/2008 |
Retail group
|
Switzerland |
| Web
application penetration test (remotely conducted comprehesive security
audit of the online shop) |
| Q3/2008 |
Pension fund
|
Switzerland |
| Security
awareness speech (awareness training of the employees by a target group
centric speech) |
| Q3/2008 |
Mechanical engineering company
|
Germany |
| DMZ
penetration test (comprehensive technical security audit of the systems
in the DMZ) |
| Q3/2008 |
Pension fund
|
Switzerland |
| Technical
security audit and implementation of ISO/IEC 17799-compliant measures
by means of penetration tests, security scans and the implementation of
scanning-/monitoring tools and coaching of the client’s project team) |
| Q3/2008 |
Credit card company
|
Austria |
| DMZ
penetration test (on-site security audit of all systems in the DMZ and
coaching of the client's project team) |
| Q3/2008 |
Insurance company
|
Switzerland |
| DMZ
penetration test (technical security audit of the systems that can be
reached from the internet) |
| Q3/2008 |
Hospital
|
Switzerland |
| DMZ
penetration test & war driving (technical security audit of the
systems than can be reached from the internet and wireless network
security audit) |
| Q3/2008 |
Insurance company
|
Switzerland |
| VoIP
security audit (comprehensive security audit of the VoIP infrastructure
by penetration tests in the LAN and in the VoIP Core network and
coaching of the client's project team) |
| Q3/2008 |
Telecommunications group
|
Switzerland |
|
Design
and coding of a database-based central intranet application for testing
and to warrant the compliance to the security policy of servers,
supporting several target operation systems
|
| Q3/2008 |
Media company (television)
|
Switzerland |
| DMZ
penetration test (security test of the systems in the DMZ) |
| Q3/2008 |
Corporate group administration
|
Switzerland |
| Security
audit (comprehensive security audit and benchmarking of the ICT
infrastructure of group companies which is operated by several
outsourcing providers by penetration tests and conceptual audits
(ISO/IEC 27001 compliant)) |
| Q3/2008 |
Trade fair and congress company
|
Switzerland |
| DMZ
penetration test (technical security audit of all systems in the DMZ
and selected web applications) |
| Q3/2008 |
Bank
|
Switzerland |
| Web
application security audit (technical security tests of a web
application by penetration tests) |
| Q3/2008 |
IT service provider
|
Switzerland |
| DMZ security
scan advanced (technical security audit of the systems than can be
reached from the internet in various DMZ') |
| Q2/2008 |
Bank
|
Liechtenstein |
| Web
application & LAN/WAN security audit (technical security tests of a
web application by penetration tests, security scans in the LAN/WAN and
protocol tunneling tests) |
| Q2/2008 |
City administration
|
Switzerland |
| DMZ
& LAN security audit (comprehensive technical security tests by
penetration tests in the DMZ, security scans of the LAN/WAN and local
system audits) |
| Q2/2008 |
Producer of protective packages and
formed technical parts
|
Germany |
| Security
audit VPN (security tests of the VPN solution for home offices) |
| Q2/2008 |
ICT outsourcing company
|
Switzerland |
| Integration
of an open source intrusion detection system (IDS) |
| Q2/2008 |
Power provider
|
Switzerland |
| Security
audit DMZ, LAN (technical security tests of selected systems in the LAN
and in the DMZ, by internal and external penetration tests, security
scans and system audits) |
| Q2/2008 |
Cantonal bank
|
Switzerland |
| Web
application penetration tests (security audit of several web servers) |
| Q2/2008 |
Digital marketing services and
technology supplier
|
Germany |
| DMZ
penetration test (testing of the firewall and all systems in the DMZ
from the external perspective) |
| Q2/2008 |
Insurance company
|
Switzerland |
| Web
application audit (technical security tests of a web server and web
services including penetration tests) |
| Q2/2008 |
Producer of off-road vehicles
|
Germany |
| DMZ
& VPN penetration test (remotely conducted technical security tests
by penetration tests of the DMZ and privileged tests of the VPN
solution) |
| Q2/2008 |
Retail group
|
Switzerland |
| DMZ
penetration test (remotely conducted technical security tests by
penetration tests of selected systems in the DMZ and protocol tunneling
tests) |
| Q2/2008 |
Online printing provider
|
Germany |
| DMZ & LAN
penetration test (security test from the internal and external view) |
| Q2/2008 |
Insurance group
|
Switzerland |
| Technical
security tests notebooks (comprehensive technical security tests of a
client-image and system hardening with focus on wireless access) |
| Q2/2008 |
Company involved in security printing
|
Switzerland |
| DMZ security
audit (remotely conducted penetration tests in the DMZ and audit
firewall ruleset) |
| Q2/2008 |
Casino group
|
Switzerland |
| Security
Audit (remotely and on-site conducted security audit of the IT
infrastructure of three casinos by penetration tests, war driving and
application security audits) |
| Q1/2008 |
Publishing group
|
Switzerland |
| Coaching on
development of the IT security strategy and the IT security guideline
(ISO/IEC 27001/27002-compliant) |
| Q1/2008 |
Insurance company
|
Switzerland |
| Coaching on
evaluation of the future IT-outsourcer |
| Q1/2008 |
Business information service
|
Switzerland |
| DMZ
penetration test (remotely conducted technical security tests of the
systems in the DMZ) |
| Q1/2008 |
Producer of protective packages and
formed technical parts
|
Germany |
| IT security audit
(comprehensive technical security tests by internal and external
penetration tests and security scans) |
| Q1/2008 |
National register of the federal
administration
|
Switzerland |
| DMZ
penetration test (testing firewall and all systems in the DMZ from the
external perspective) |
| Q1/2008 |
Company involved in security printing
|
Germany |
| DMZ
penetration test (testing firewall and all systems in the DMZ and in
the LAN/WAN and digital penetration into the client's LAN using a test
trojan) |
| Q1/2008 |
Insurance company
|
Switzerland |
| Web
application penetration test (in-depth security test of a web
application) |
