We specialize in analyzing IT infrastructures with regard to the security of your organization and in doing so identify vulnerabilities in the areas of confidentially, integrity, availability, non-reputability, completeness and traceability of your information assets. Our audits will be adjusted to your individual requirements and vary from evaluation of checklists to detailed analysis of your IT infrastructure including network, operating system, database and organizational levels.
We evaluate both organizational and technical controls. Our methods for gathering information are multifaceted and in most cases involve a combination of observation, reviews of existing documents, interviews, workshops, surveys and technical control samples.
At Security Research we emphasize the on-going certification of our employees to formally document the quality of their expertise. Thus, professionals from Security Research have completed various vendor-specific certifications (MCITP, MCSA, MCSE, CCNA etc.) as well as security-related certifications, including: CISA (Certified Information System Auditor) CISSP (Certified Information System Security Professional), CISM (Certified Information Security Manager), CPTE (Certified Penetrating Testing Expert), and CSSLP (Certified Software Security Lifecycle Professional).
Employees of Security Research are geared to international IT standards and process models, such as CobiT, ITIL, ISO 17799, ISO 27001, BSI IT Baseline protection manual, Austrian IT Security Handbook and OSSTMM.