Select Page

DefenseCraft

Cybersecurity

Our Philosophy

Cybersecurity is not a product that can be purchased, nor is it an IT specific function. It’s a continuous organization wide process of education and technological improvement.

read more

Our Mission

To develop an organization wide security aware mindset melded with carefully crafted policy and robust security controls.

read more

Professional Services

read more

Design

  • Governance Frameworks
  • Network Architecture
  • Security Controls
  • Policy Development
U

Testing

  • Vulnerability Assessment
  • Penetration Testing
  • Compliance Audits
  • Social Engineering
s

Risk Management

  • Risk Assessment
  • Compliance Strategy
  • Contingency Planning
  • Supply Chain Protection

Training

  • Security Awareness Training
  • Social Engineering Defense

Superior security strategies from leading-edge research

Cyber criminals are giving executives and IT departments sleepless nights. And the worries are increasing with frequent news of data breaches and ransomware. We want to help you fortify your network and educate your staff.

We do more than just harden and test your network and communication systems. We assist your organization in developing an integrated security posture that is built around a knowledgeable workforce.

Acquisition & Procurement Risk in the Cybersecurity Industry

by | April 3, 2018 | Blog | 0 Comments

Overview Information security for an organization is an ongoing process of users interacting with technology through a combination of policies, procedures, software and hardware to provide data confidentiality, integrity, and availability. All users are part of the...
Read More

Application Lifecycle Management in High Security Systems

by | November 9, 2015 | Blog | 0 Comments

Overview   Security of software products during both development and operations is vital and can effects national security, therefore the security control baseline selected will be ‘high-impact” criteria in NIST 800-53 based on the criteria in NIST 800-60 stating...
Read More

The Coming Internet Apocalypse (really!)

by | November 22, 2017 | Blog | 0 Comments

There’s a looming disaster on the cyber horizon coming to the Internet and cellular communications in the next few years(McGrew, 2015). Specifically, 90% of the current encryption used for data transmission on the internet and in cellular phones will cease to be...
Read More

Risks of Third Party Service Providers or Vendors

by | July 17, 2018 | Basics, Blog | 0 Comments

Few organizations can afford the cost of a dedicated and fully staffed SOC with initial startup and annual operating costs in the millions of dollars. Many businesses are outsourcing the SOC and SIEM functions to third party service providers. This requires that the...
Read More

Endpoint Protection Software

by | October 18, 2014 | Blog | 0 Comments

In the not so distant past, network and information security focused on securing the perimeter of the company. The increasingly advanced threats have shown that this strategy isn’t sufficient and that protection of the individual devices that the user interacts with...
Read More

Ethics of Information Security

by | June 9, 2018 | Basics, Blog | 0 Comments

The stakeholder is a term for an individual impacted by a corporation’s activities, and is in contrast to the idea of shareholder, which is a part owner of the corporation. It originated from Ian Mitroff’s book "Stakeholders of the Organizational Mind" and broadens...
Read More

DefenseCraft

Cyberspace is dangerous. We can help.

[zc4wp_sa3]

“It takes 20 years to build a reputation and few minutes of cyber-incident to ruin it.”

Stephane Nappo, Global Chief Information Security Officer at Société Générale International Banking