nGran offers a wide variety of specialized services, including application security testing & assessments, as well as customized personnel training. Click on the appropriate links for more information.
Information Disclosure Sweep
An
Information Disclosure Sweep of the Web is designed to reveal any
confidential information that may lead to a compromise of the security
and integrity of a Company’s website. This includes vulnerabilities
that may NOT typically yield immediately valuable information or
control over a system but instead gives an attacker inside knowledge
that may help an attacker find and exploit other vulnerabilities.
Info Disclosure 2012
Security Testing & Assessments
nGran provides comprehensive data security testing to businesses around the world. Below is a brief listing of the thorough data security assessments we provide. For additional information, click the correlating subtopic button to the right.
Web Site Security Reviews: Test the strength of access controls for systems and application software of internal and external sites.
Web Site Security 2012
Security Audits: Evaluate technical, procedural and managerial elements of networking and systems environments.
Security Audits 2012
Attack & Penetration Security Testing: Evaluates the strength of current security defenses from intrusions.
Penetration Testing 2012
Vulnerability Assessment: Detailed diagnostic of internal and external security controls.
Vulnerability Assessment 2012
Security Awareness Training
With a thorough understanding of your business' needs, nGran provides personalized classes, videos, and security ceritifications, so you and your staff can stand strong at the front lines of your company's security.
This service is a customized set of courses with tracks for General & Administrative users, Technical Support and Developers. Courses typically run from 90 – 180 minutes in length. nGran will use your company’s Security Policies & Procedures along with your unique set of needs to properly tailor the course materials to your requirements. Demonstrations of “high risk” threats are included for all tracks with useful explanations at the appropriate skill level. In addition, all tracks provide “Best Practice” guidelines based on NIST SP 800-50, SP 800-122, CERT & Department of Homeland Defense recommendations. Supplementary course materials include security questionnaires, glossaries, protection tools and approved processes to securely “surf” in today’s Internet environment.
All courses meet the training guidelines for:
Graham-Leach-Bliley Act Employee Training Requirements
U.S. Federal Guidelines Under the 1987 Computer Security Act