Professional Services

The Internet and Information Technology has become the infrastructure that supports the day to day operations of most organizations. The entire organization is at risk of business disruption if the infrastructure is not properly protected from rogue employees, industrial espionage, and external threats. More importantly perhaps, it is at risk to "Loss of Credibility, Loss of Confidence & Loss of Trust, resulting in...Loss of Revenue".

Today, in the payment processing, healthcare and financial services (auto dealers, mortgage brokers, Realtors, etc.) environments there can be severe civil and even criminal penalties. Our subject matter experts help organizations identify and manage information security risks.

A Consulting Engagement Targets:

Risk Assessment - eCenturion will evaluate the overall business environment and its supporting technical infrastructure to determine where information security risks exist and where technical and procedural countermeasures are required.

Security Architecture - We will design a comprehensive security architecture integrating all of the various security and infrastructure components into a single cohesive system.

Custom Solution Development - We will create a custom security solution tailored to the individual organization needs. eCenturion's modular approach to custom development maintains the ability to update and modify the solution as future needs change.

Security Implementation - eCenturion will implement a custom or off-the-shelf information security system. Our implementation methodology ensures that the system is installed and configured to meet the organizations needs and objectives.

Computer Forensics - eCenturion will respond immediately to any request for service with our team of forensic experts and support you through assessment, recovery, evidence collection & preservation and law enforcement referral should that be a desired result.

Our Approach:

eCenturion's approach to information security identifies and mitigates information risks within the technology and business environment. This approach segments risks into four separate but related areas.

Network Security governs the ability to traverse the network infrastructure to gain access to the connected systems and data. Depending upon the structure of the organization, network security may include such measures as firewalls, VPN's, routers, switches, and intrusion detection & prevention systems.

Host security governs the ability to access data processing and storage resources available on the servers, workstations and clients throughout the network. Effective host security may include such measures as user and process authentication as well as authorization, event logging, auditing, resource allocation and monitoring.

Information security governs the ability to access and utilize data stored throughout the network. Critical organization data often spans multiple systems and networks thus making the protection of data more difficult than just protecting the networks and hosts.

Process security governs the ability of individuals to affect security through non-technical means. These may include such things as physical disruption, social engineering, and policy and procedure exploitation by insiders and outsiders. By using these methods, it is often possible to bypass even the best network protections.

In today's world of privacy regulations and security breaches, the selection of a security solution is no longer a technical decision, it is a management decision. In the event of a breach as a business manager who do you want representing your company, subject matter experts or your security technician who may only casually understand security? Your selection may determine the future of your business!

eCenturion will work diligently with you to identify and mitigate all significant risks in each of these areas. At the end we have equal interest in preserving your organizational Integrity, Reliability and Trust!

Contact our Professional Services Group at PSG@eCenturion.com to discuss an assessment of your network, the potential impact on your business, and how your concerns can be resolved.