The Kerberus consulting practice exists to help enterprises solve the Information Assurance challenge. Because we have a deep understanding of all the issues, we can engage with clients at every level - from the boardroom to the server farm - enabling them to address their critical business drivers effectively and securely.
Kerberus has one of the Russia’s most professional and sophisticated practices specialising in this area. Our consultants have solved some of the toughest security challenges to have hit the financial services, telecoms and manufacturing sectors.
Business Continuity Planning / Disaster Recovery Planning
Losing critical systems, key business processes, or vital data could send your company into a tailspin. Even short business disruptions are a risky proposition in these days of rapid growth, increased reliance on information technologies, and pressure to do business around the clock.
In today’s world, disruptions that cause losses can happen without warning to any company or its business partners at any time. No organization can afford to be unprepared, because the ability to minimize downtime and quickly recover is not an option - it is a critical success factor.
To stay competitive, companies must continuously embrace new opportunities and new technologies — which introduce new challenges and risks into an organization.
In today’s connected economy, one of the biggest challenges is to build trust with business partners, customers, employees and other stakeholders, as their participation depends upon the level of confidence they have in a given business model.
Until recently, stakeholders’ trust and confidence was closely linked to the strength of a company or brand’s reputation. However, new and changing business models are creating “trust gaps” for even the most recognizable brands. As a result, trust must be established quickly and completely if that business is going to succeed.
Fundamentals of Information Security Management
Sometimes management doesn’t understand a connection between information security and company’s business. Absence of this knowledge may results in financial losses.
Data Classification is the conscious decision to assign a level of sensitivity to data as it is being created, amended, enhanced, stored, or transmitted. The classification of the data should then determine the extent to which the data needs to be controlled / secured and is also indicative of its value in terms of Business Assets.
Information Security Awareness Program
Information Security is like a chain, as strong as the weakest link. More than 80% information security problems are human problems, hence Information Security must be extended beyond the technology. Improving people awareness as the weakest link has been forgotten by many organizations.
Nowadays, security threats in digital life are not only for big organizations. The threats exists in anywhere for everyone. Friends, family and children can be a victim just because they are not aware of the risks of cellular phone, digital camera, chatting, e-banking,SMS, etc.
Policies and Procedures Design & Review
Is your organization's security policy sitting on a shelf collecting dust? If so, you may be ignoring what could potentially be your organization's first line of defense. Leveraging our years of information security experience, Kerberus helps organizations develop and maintain effective security policies.
Traditional security, while quite important in the overall security plan, usually falls heavily on protecting systems from attack, and perhaps monitoring systems to detect attacks. Little attention is usually paid for how to actually handle an incident when it occurs. The result is that when an attack is in progress, many decisions are made in haste and can be damaging to:
-
tracking down the source of the incident
-
collecting evidence to be used in prosecution efforts
-
preparing for the recovery of the system
-
protecting the valuable data contained on the system
An information security audit is one of the best ways to determine the security of an organization's information without incurring the cost and other associated damages of a security incident.
This service provides a comprehensive review of your enterprise’s security posture.
Network perimeter vulnerability assessment (Managed Service)
Many organizations are continually updating systems, granting access to users, and installing new, increasingly complex applications and services. Most new network modifications increase infrastructure complexity—and complexity is the enemy of security. Many global enterprises find it difficult to keep up with the constantly changing array of vendor and IT exploits.
Every company which considers Wireless Network deployment asks the following questions:
Is the choosen wireless solution secure?
What are the business risks of wireless implementation?
Companies install and configure all kinds of security technologies, such as firewalls, network- and host-based intrusion detection systems and virtual private networks. They all contribute to what looks like a complete and integrated security set-up. The objective, of course, is to safeguard applications and data against the threat of a hacker attack. But does it work? Automated scanning tools or standard testing procedures can help validate the efficiency of these security measures. But the only real test is an attempted attack by a hacker.