References

Awareness talk data protection

Awareness presentation at an affiliated doctors conference with live demos on cyber security, data security, email, cloud services and mobile devices

Penetration test of externally accessible systems

Security scan from the outside and penetration test of a selected system

Penetration test in the DMZ and web application penetration test of a web portal

Review of a policy on minimum requirements regarding service level agreements (SLAs) with external parties

Configuration review of two application server

Server and firewall configuration review, penetration test and a technical review of the terminal devices

Review of 10 security policies (information security policy, IT acceptable use policy, physical security, inventory, etc.) with focus on ISO 27002 and 27001

Web application penetration test of a collaboration platform including a configuration review

Penetration test and configuration review

Penetration test and configuration review of a managed print service solution

ISO 27001 and 27002 security audit; analysis of the security level by means of questionnaires, interviews and document reviews as well as suggestions for improvements with prioritized measures

Technical and conceptual IT security audit of a VPN environment

Re-test of a web-based password reset application

Preparation and moderation of an information classification workshop

Preparation and moderation of an information security organization workshop

ISO 27002 security audit (analysis of the security level by means of questionnaires, interviews and document reviews as well as suggestions for improvements with prioritized measures)

Digital forensic readiness audit

Information security policy development in alignment with ISO 27001 (workshop)