References

Web application security audit of a complex workflow system

Application security audit of two multimedia communication gateways

Web application security audit (in-depth technical security check of a CMS and various international websites)

Security audit (comprehensive security check by remotely conducted application security audits and security scans in the LAN)

Coaching on development of the IT security strategy and the IT security guideline (ISO 27002-compliant)

Security audit (conceptual and technical security check of the whole IT infrastructure)

DMZ security audit (remotely conducted technical security tests of all reachable systems in several DMZs by security scans and penetration tests)

DMZ penetration test & war driving (technical security audit of the systems than can be reached from the internet and wireless network security audit)

Coaching and support for client's project team in Business Continuity Planning/Management (BCP/M), process design and system hardening

Gap analysis, coaching and support for client's project team on ISO/IEC 17799 and SOX compliance

Security awareness workshop (security awareness training for staff in a half-day workshop, held twice)

DMZ penetration test and LAN/WAN security scan, including ethical hacking (testing firewall and all systems in the DMZ and selected systems in the LAN/WAN, digital penetration into the client's LAN and coaching the client's project team)