FAQ
- What exactly is “Information Security”? It is all aspects of controlling the flow and storage of information that has value to a person or an organisation.
- I use virus scanners and firewalls. What do you do that’s different? These products look for a restricted set of problems and make fixed decisions, whereas we are able to monitor events from all over your network, intelligently link them together, and using that information find problems that are normally hard to pinpoint.
- Our IT staff already do this, don’t they? IT staff, even in well-managed organisations, are often very busy meeting the immediate needs of the business, such as day-to-day “fire fighting” or working on new projects. Our system gives IT a “helping hand” by quietly monitoring all the unseen events on your network, and alerting them in a preferred way if anything requires closer examination.
- How can I deploy risk intelligence? Organisational risks come in many forms, from the disgruntled insider, to the shadowy external attacker, and even the well-meaning staff member who is just “trying to get something done” – unaware that their actions have caused sensitive information to leak onto the internet. We provide insight into strategic and tactical risks, including the engineer trying to research solutions on internet forums, competitors masquerading as disgruntled customers, and even early warnings where social unrest can create danger to the organisation and the people working there.
- Can you help me achieve compliance? Our risk consultancy has worked with clients in finance, telecommunications, media, utilities, and consumer retail to provide strategic direction to not only achieve compliance with standards such as PCI DSS, ISO27000, IAMM (to name but a few) but also ensures that once compliant, effective business-as-usual processes are in place to maintain compliance against an ever-changing threat landscape.