Author - admin

Security Operation Center

 

 

Security Operations Center

 

At the heart of the SOC is the near real-time monitoring team, analyzing the security events and managing the security posture. Cyber360  SOC consultants are deployed in a number of different ways to meet the client requirements, either as contractors or to supplement Full Time Employees (FTE). The following are a few examples of how clients currently utilize our staff:

  • Manpower substitution to the end client (either unbranded or Cyber360  branded).
  • Manpower substitution to a service delivery client (branded as the service delivery client).
  • 24-7 shift working junior analysts, with the client managing the team and day staff.
  • On-call expert escalation to support client staff when incidents occur.
  • On-call temporary staff to fill-in for vacation etc., of client staff (reducing FTE head-count).
  • Entire SOC team in-sourced to the client site.
  • Architecture only, designing a networks monitoring capability.
  • Management only, using Cyber360 capability to manage and train client FTE’s.
  • Advanced Analysts to support clients’ existing team.

Cyber360’s experienced, professional recruitment staff will be at your disposal to recruit and provide qualified permanent staff for your SOC.

Read more...

Secure Development

 

 

Secure Development 

Cyber360 provides professional support services to organizations’ development teams and programmers. Our team follows the company in the entire developing process with a rich variety of services that covering all security aspects.

Our services include:

  • Creating and integrating SSDLC.
  • Analyzing existing security issues.
  • Accompanying the design and development teams of experienced developers.
  • Professional manual security code review.
  • Automate code review reports analytics.
  • Secure development trainings.
  • Applicative and Infrastructure penetration testing.
  • Applicative and Infrastructure risk surveys.
  • Real time response to security attacks.
  • Forensics for security events.

 

 

 Call on +442032861927 
        Request Call back       

 

Read more...

Defensive Security

 

 

Defensive Security

 

 

 

Risk Assessment

An information security Risk Assessment is a complex examination mechanism that encompasses all the aspects that come into direct or indirect contact with the organisation’s information systems. Within the framework of the assessment, the organisation’s information systems are mapped to an abstract level, at which it is easier to examine their different components and grade the level of risk derived from all the systems.

Numerous risks may affect the organisation’s information assets, such as flawed allocation of authorisations to employees in various departments; information leakage among departments; lack of compartmentalisation; deficient password management; uncoordinated information availability; recovery following a disaster; and erroneous firewall definitions.

The risks are determined in accordance with the level of importance of the organisation’s assets; therefore the performance of the assessment is subject to the cooperation of its various departments. By mapping and assessing the risks, it is possible to arrive at an organised plan according to which penetration tests will be carried out on the systems, based on their importance to the organisation.

 

 

Cyber Readiness Inspection

The growing sophistication of Cyber attackers and the increasing reliance on the Internet as a form of communication and service delivery necessitates that organisations plan ongoing active protection of their environment from Cyber attackers.

Organisations increasingly require insight on how to develop resilience, which requires the combination of a security controls framework and an incident response capability.

Resilience audits and maturity mapping provide a basis for evaluating your current situation and creating a road map for future development toward a higher state of readiness & resilience.

Cyber360 has developed a cyber-security readiness program which aims at ensuring organisations have the appropriate technological and methodologies to mitigate the risk of cyber-attacks and lower the possible impact of such attacks.

Cyber360 tested approach to conducting a Cyber Security Readiness will provide an in-depth analysis of the overall readiness state of the organisation and will involve:

  • Developing a threat map for your organisation, detailing threat agents, motivations and capabilities.
  • Mapping your organisation’s critical assets, channels, services and critical components.
  • Developing threat scenarios modelled on advanced threat vectors relevant specifically to your organisation’s portfolio and providers. The scenarios will be developed from the identified mapped threats and your organisation’s critical components.
  • Using Cyber360  Readiness Control Framework to perform a gap analysis to detect the ability and maturity of your organisational controls to respond to each of the relevant cyber security domains.
  • Providing your organisation with an overview of its Cyber Security readiness posture and initial recommendations and a road map to close the major gaps detected.

 

 

Info Security Consulting

Cyber360 offers a Security consulting service that provides professional support with a deep knowledge of security architecture.  We can advise you of the right solutions for your information security and help you develop information security guidelines and policies for your organisation.  We can propose comprehensive security solutions, and assist you in writing RFPs to meet your organisation’s information security needs.

 

 

Hardening

Cyber360 tests the level of hardening of servers and services in accordance with the global standard and the experience gained from the company. The examination involves the hardening of operating systems (Win, Linux, etc.) and several other utilities such as web, terminal, and other system applications. The service also includes validating the organisation’s hardening documentation

 

 

 Call on +442032861927 
        Request Call back       
Read more...

Offensive Security

 

Offensive Security

 

 

Penetration Testing

The technological threat landscape is constantly changing, and it is important to regularly check existing systems for new vulnerabilities. Similarly, when introducing new systems, devices, and inter-dependencies to your organisation, it is critical to ensure that they do not represent a threat. Organisations now present a multitude of system & device vulnerabilities that offer attackers opportunities to compromise their security.

Penetration tests and the implementation of their results will reduce the options available to hostile elements attempting to penetrate the organisation’s network and applications, and will provide an important additional security layer, which often is the critical layer.

 

 

Infrastructure Testing

An infrastructure penetration test is a method of evaluating the security of a computer system or network by simulating an attack from a malicious source. IT infrastructure and network is of critical importance to every company’s successful operation. Cyber360 specialises in the performance of diverse tests that determine the level of information security of your infrastructure and network, such as penetration tests from the external to the internal network; and tests conducted on servers, end stations, infrastructure products, firewall bypass and more.

 

 

Application Testing

Application security testing can be performed from both an internal and external perspective and involves an active analysis of the application for any weaknesses, technical flaws, or vulnerabilities. The importance of protecting the organisation’s applications is rapidly increasing due to the accelerated transition to the use of Web applications, which is becoming broader on a daily basis, and supplies users with unique and new access options that have not existed in the past.

Cyber360 specialises in the performance of advanced application tests, Our experts conduct complex application tests based on our unique, proprietary methodology, developed by Cyber360’s founders. This includes new web technology such as Node-JS, Angular, HTML5 and more.

 

 

Internal Attack Simulation

Internal Penetration Testing from the client’s office that examines the possibility of an internal physical access to a network to gain control over the organisation network. The test examines the possibility to achieve strong user privileges in order to review or edit information that the user is not authorised to access.

 

 

Security Product Evaluation

Cyber360 offers “product security” services that provide highly professional evaluation of security product logic strength.

This service combines standard penetration testing attacks and Cyber360’s unique knowledge and experience and focuses on bypassing business logic of the product to check whether it is vulnerable to malicious actions. For example: bypass security measures like sandbox, AV, NAC, browsing and client level security controls.

 

 

Vulnerability Assessment

Cyber360 Vulnerability Assessment Services provide comprehensive network vulnerability assessment for measuring network security risks. Scanning network devices including firewalls, routers, switches, servers, workstations, printers and print servers.

These tests identify and locate vulnerabilities, categorise them by severity and provide detailed reports with standard vulnerability elimination procedures. Our experienced team of security engineers also works to identify false positives.

 

 

 Call on +442032861927 
        Request Call back       
Read more...

Cyber Attack Simulation

 

 

Cyber Attack Simulation

 

 

  

Ethical Hacking

Gathering intelligence about the organisation, detection of sensitive positions and mapping of external access infrastructure. The gathering can also include active social engineering and in-depth data gathering.

Determination of the attack vector that includes the mail systems; vaults; VPN; web applications; or even users who have the ability to switch between home networks and the organisation’s network. This phase also focuses on technical testing of the vector; sandbox evasion, etc.

 

 

Intelligence Gathering

Gathering intelligence about the organisation, detection of sensitive positions and mapping of external access infrastructure. The gathering can also include active social engineering and in-depth data gathering.

Determination of the attack vector that includes the mail systems; vaults; VPN; web applications; or even users who have the ability to switch between home networks and the organisation’s network. This phase also focuses on technical testing of the vector; sandbox evasion, etc.

 

 

Defence Perimeter Bypass

Several attacks will be carried out in order to get access to the corporate network, using data obtained in the initial phase of the attack vector. The goal is to reach a position within the organisation that allows us active connection via our command and control server. All of the scenarios gathered in the first stage are valid to attack and will be tested.A privilege escalation process will be conducted in order to gain access to sensitive information and to create a reusable access point.

 

 

Internal Network Takeover

“Client takeover” – Cyber360 will be focused on two major issues: gaining access to the domain controller servers and elevating ourselves to domain-admin; gaining and extracting of sensitive information. All actions will be done with the client and under the client’s approval and monitoring.

 

 

DDOS Simulation

Distributed Denial of Service or DDoS is an attack that denies service for a prolonged period of time and can result in a significant loss of revenue and damage to reputation. As botnets are a commodity that can be rented hourly by criminals for DDoS purposes to inflict damage on websites and equipment, such forms of attack are proving to be of significant concern.

While some organisations are investing in counter-measures, most still have no real insight into the potential impact of one of the most straightforward attacks that criminals use against websites and systems – the DDoS.

Cyber360 team can help organisations by simulating a DDoS attack to assess how the organisation’s systems respond to such an attack, and then provide solutions to mitigate such a risk in the future.

Cyber360 developed a global cloud-based environment in order to provide a unique service, in which multiple cloud-computing platform providers are joined together to launch several kinds of DDoS attacks – from the basic network flood, to the more advanced cryptographically challenging SSL connection flood and even application level attacks that requires higher computing capacity.

Such attacks are fully controlled and coordinated in an out-of-band mechanism, thus allowing us to fine-tune the level of attacks, initiate, pause or completely stop them at will and within seconds.

This kind of real-world simulation enables organisations to find the real bottlenecks in their infrastructure and internal procedures, and through a more informed decision making process to invest in the right places that will provide the best value for money when preparing for such threats.

 

 Call on +442032861927 
        Request Call back       

Read more...