Following are our services we provide.
+ Information Security Processes and Policies
Software Innovation Networks can help or produce information security policies of varying nature depending on nature and requirements of our clients. Devising ISMS frameworks with clear and unambiguous definitions of security processes and consequent monitoring/auditing services of those processes. Our technical staff is well versed in implementation of and compliance to information security and governance standards such as ISO 17799/27001, COBIT & SOX.
+ Security Architecture Reviews and Design
We offer Security infrastructure reviews and strategic design from a vendor neutral point of view. A vendor solution that works for one company may not be the best one for you and hence after thorough assessment of our clients infrastructure, we recommend solutions and designs that will work best for our clients needs.
+ Internet Security Testing
Any device with access to the Internet is a potential open door to would-be hackers. Software Innovation Networks provides vulnerability assessments during which it closely maps the network architecture, examines all open ports, hosts and services with access to the Web, and ensures that these network devices are secure. During this defensive process, once open ports and attached services are identified, we determine whether each service has been updated with the most recent patches and identifies other vulnerabilities located within the exposed services.
In addition to conducting vulnerability assessments, Software Innovation Networks Security Consulting performs more rigorous penetration tests in which the information gathered from its assessment is used to attempt to penetrate the network. This more thorough procedure can confirm whether potential vulnerabilities are, in fact, capable of being exploited to expose the network.
Following all vulnerability assessments and penetration tests, Software Innovation Networks Security Consulting uses the information it gathers to prepare a thorough vulnerability analysis and offers recommendations for strengthening network and internet security.
+ Intranet Security Testing
While outside threats must be guarded against, business must also protect against potential threats from within their own networks. Using many of the same techniques and procedures for Internet Security Testing, Software Innovation Networks provides Intranet risk assessment and analysis to protect against the potential threat posed by insiders and native users.
Depending on the client’s needs, intranet testing can be performed by Software Innovation Networks under varying degrees of disclosure of network information (white box and black box testing).
+ Web Application Assessment
This assessment examines what services are being offered on Web-based portals and e-commerce applications to examine potential vulnerabilities with respect to authentication, authorization, data integrity, data confidentiality, and consumer privacy concerns Software Innovation Networks can test these applications using either zero-knowledge testing or full-access testing to examine the full range of potential vulnerabilities.
+ Security Awareness & Training
Our Security Consulting provides training seminars to IT professionals and employees with access to sensitive information to better educate them about the risks of social engineering and how to prevent themselves from falling prey to ruses posed by competitors or malicious intruders. These seminars are dedicated to preventing human error from undermining an otherwise robust information security infrastructure. These programs are geared and developed according to the client's needs and degree of risks associated with naïve and/or malicious use.
