Download Brochures:
|
N2 Net Security, Inc proudly provides the following services:
 |
Penetration Testing | This is our flagship offering. Quite simply we are the best and wrote the book about it! This service is designed to find and fix critical vulnerabilities before the bad guys find them. Using the same techniques as attackers, but under strict control, issues are systematically found and verified to demonstrate the "True Risk". As required, applications may be assessed with either access to source code or without. Networks will be assessed by probing external interfaces and then moving to an inside and trusted assessment. Finally, the results are written up and presented in an actionable remediation plan. | |
|
|
Gap Assessments |
We help our clients determine the current state of their security posture. We start with a Free Gap Assessment, then offer a range of other gap assessments, including SIEM, PCI, Compliance, Security Program. This is a critical service to help clients know where they stand before investing resources and making changes. |
|
 |
Governance, Risk Management, and Compliance (GRC) |
Our clients face a myriad of ever changing regulations and standards. The most common ones are PCI, SOX, HIPAA, State and Federal Regulations. We assist by first conducting a compliance gap assessment. Then a targeted and prioritized remediation plan is developed and implemented to meet compliance and reporting requirements. It is important to remember that Compliance ≠ Security, however risk of compromise reduces dramatically when compliance is reached. Note: We are a certified PCI QSA, contact us for PCI Services. |
|
 |
SIEM |
We also wrote the book on this subject, literally. Today, organizations have many security devices: firewalls, IDS, Antivirus, Operating System logs, Application logs, Database logs, remote access control, and web proxy logs. The question is: how do you monitor all of those devices and maintain the logs for periods ranging from months to years? The answer: a Security Information Event Manager (SIEM). We assist our clients with selection, integration, tuning, and operation of SIEM technology. | |
 |
Security Operations |
It does not matter how many security tools an organization may have, if they do not have the resources, procedures, or training required to successfully use those tools and secure the environment. We assist our clients with both Vulnerability Management and Incident Response. From organization, to training, to staff augmentation, we will help build your security capability. |
|
 |
Managed PCI |
We provide a fully managed PCI service. We start with a Gap Assessment which includes a PCI focused penetration test. Next, we provide continual guidance to remediate issues discovered during the Gap Assessment. Then, we provide a formal, onsite PCI QSA Assessment. Finally, we provide annual maintenance, which includes further remediation, penetration testing, and re-certification. |
