Today's organization are ever transforming, re-inventing themselves, expand their offerings, products, services and customers reach. Information Communications Technology (ICT) is acting as a enabler to this rapid transformations. This causes the organizations to depend further on ICT and increases the organizations operational risk. As they open their networks to intranets, extranets, and Internet to reach larger audiences, the risk of potential malicious attacks, information leaks and business disruptions also increases. These newly developed Service Oriented Applications (SOA's) have also become mission critical and assure round the clock presence and customer service on the connected village of the Internet. The Chief Executive Office-CEO, Chief Information Officer-CIO, Chief Technology Officer-CTO, Chief Governance Officer-CGO and Chief Security Officer-CSO must consider these new risks and take the necessary steps to protect their organization so they can focus on their core business.
At eSgulf we developed our security services around our A5™ security methodology this is a 5 key continuous skilled process approach to security maturity:

• Assess - evaluate your security posture, risks and needs. Our experts evaluate the client’s environment using the best of both standards-based and process-oriented approaches and risk management analysis.
• Architect - Benchmark, design and document your security solution. We architect the People, Process and Technology requirements designed to support your business SOA.
• Apply - Commission, install, configure and implement your security solution. Our skilled technicians assist in-house staff to implement the architected solutions, or implement other turnkey solutions.
• Administer - Operate, monitor and revise the security solution on a continuous basis. From Incidence Response, to Disaster Recovery or Forensic Analysis we provide a complete administration services. For a totally managed service, depend on eSgulf to monitor your system for hostile activities and to recommend responses.
• Awareness - Security, Education, Training and Awareness (SETA), security Awareness is one of the key pillars of security implementation since it focuses on the user. The user is normally the weakest link in the security model and requires the most attention to understand newly introduced risks and change behavior. eSgulf offer End Users Awareness at all levels of the organization:
      * Executive Management
      * Technical Management
      * Technical Support Staff
      * End Users
  

The structured process delivers a road map to secure your organizations Information assets.
This process is complemented by time-based security approach and Open Security standards. Covering everything from security documentation and compliance with legal requirements, to finding and fixing your security holes, to security training and awareness programs for your staff, eSgulf offers complete e-Security services.

Assess	* Vulnerability Assessments * ISO17799, BS7799 Assessment, Gap Analysis * Penetration Testing (10 types), based on OSSTMM * Basel II Assessment * Business Impact Assessment, Risk Assessment * Security Audits * Physical Access, Security and CCTV Audits
Architect	*  Design Security Architecture and Framework * Design Security Organization and Maturity Program * Policies, Standards, Procedures and Guidelines * Business Continuity Planning * Disaster Recovery Planning * Physical Security Design (CCTV, Access Control)
Apply	*  Intrusion Protection Systems (IPS) * Anti-phishing * Anti-Spam * Trusted Operating Systems * Biometrics Technologies * Smart Cards Technologies * Data Vaulting * PKI, VPN, Encryption * Web Defacement Protection * Content Inspection and Management
Administer	* Managed Security Services * Managed Patch Management * Managed Security Alerts * Managed Vulnerability Testing * Security Operations Center (SOC) * Forensic Analysis, Video-Audio Enhancement * Incidence Response, and Security Support
Awareness	*  Design of Security Awareness Program * Alerts, Newsletters, Intranet, Posters, Screen Savers… * Implementation of Security Awareness Program * Over 20 in depth security courses and workshops

  

Posted on january 23th, 2008 by Webmaster