VA/PT is a requirement for compliance with standards such as PCI-DSS, or as a part of risk assessment for ISO 27001;

Conducting regular VA/PT is deemed a good practice and is usually included in well-designed security programmes.

VAPT is included in our security assessments, but we also offer a separate service for specific objectives such as reports for compliance audits.

We use VA scanning tools according to the need of the organisation and analyse reports to extract actionable intelligence.

In addition to the summary report, we submit recommendations for remediation and a prioritized list of remediation activities.

Information Security Policies

Organization of Information Security

Human Resources Security

Asset Management

Access Control

Cryptography

Physical & Environmental Security

Operations Security

Communications Security

Supplier Relationships

Security Incident Management

Our senior consultants having 20+ years experience in information technology and holding various professional certifications such as

CISSP, CISA, CISM, CRISC, CGEIT, COBIT, ITIL, ISO27001, ISO20000, TOGAF9, PMP, MCSE, MCITP, MCT.