References

Web application penetration test of 3 online shops

Re-test of a Windows 7 client

Creation of an audit framework for ISO 27001/2

Security audit of the corporate website and the online store by means of application penetration tests

Security audit of the DMZ by means of a security scan and penetration tests

APT security audit (incl. network analysis, design review, conceptual analysis, configuration review, firewall review)

Security audit of a communication infrastructure by means of a design, architecture, configuration and process review as well as internal and external security scans and penetration tests

Security analysis of an autogenerated output of an internal security appliance over a wide variety of systems

ISO 27002 security audit (analysis of the security level by means of questionnaires, interviews and document reviews as well as suggestions for improvements with prioritized measures)

Creation and review of three IT security policies

Review and additions network zone concept

Configuration review data transfer solution incl. firewall ruleset review

Code review of a mobile app and associated server components

Creation of a policy for cloud-based services

Creation of an access control / password policy

Creation of a Public Key Infrastructure (PKI) concept

Creation of a penetration testing guide incl. virtual machine with a set of tools

Creation of an extensive patching concept

IT security awareness training for global IT

Security audit Windows 7 client (incl. penetration test and configuration review)