DefenseCraft

Cybersecurity

Our Philosophy

Cybersecurity is not a product that can be purchased, nor is it an IT specific function. It’s a continuous organization wide process of education and technological improvement.

Our Mission

To develop an organization wide security aware mindset melded with carefully crafted policy and robust security controls.

Professional Services

Design

  • Governance Frameworks
  • Network Architecture
  • Security Controls
  • Policy Development

Testing

  • Vulnerability Assessment
  • Penetration Testing
  • Compliance Audits
  • Social Engineering

Risk Management

  • Risk Assessment
  • Compliance Strategy
  • Contingency Planning
  • Supply Chain Protection

Training

  • Security Awareness Training
  • Social Engineering Defense

Superior security strategies from leading-edge research

Cyber criminals are giving executives and IT departments sleepless nights. And the worries are increasing with frequent news of data breaches and ransomware. We want to help you fortify your network and educate your staff.

We do more than just harden and test your network and communication systems. We assist your organization in developing an integrated security posture that is built around a knowledgeable workforce.

The Importance of Governance Frameworks in Information Security

On May 7, 2014 Chinese hackers gained access to the United States Office of Personnel Management (OPM) but the breach wasn’t discovered until April 15, 2015, and the breach wasn’t announced until June 2015. The attackers had access to the OPM servers for almost a full...

Cybersecurity and NAICS Codes

Overview The cybersecurity industry is an aggregation of products and services to protect computer networks from data confidentiality, integrity and availability. It’s vital to the health and continued functioning of the Internet and all connected organizations....

Social Engineering Attacks

Employees are vulnerable to social engineering attacks which are the modern day high tech confidence scams. In business, there is constant inflow and outflow of data and that information is controlled by solely by employee discretion. This is unavoidable, but it does...

Endpoint Protection Software

In the not so distant past, network and information security focused on securing the perimeter of the company. The increasingly advanced threats have shown that this strategy isn’t sufficient and that protection of the individual devices that the user interacts with...

Website Risks

Websites are problematic for cybersecurity because they’ve grown from a simple information page to interactive scripted content management systems that act as the front end for an organization’s database. It’s essentially a public facing application that’s allowed to...

Integrating Disaster Recovery with Information Technology Governance Frameworks

Overview   Disaster of a natural or man-made variety can strike a business without warning and may cause damage serious enough to interrupt operations for a significant period of time. This would cause loss of profit and reputation and could negatively impact all...

DefenseCraft

Cyberspace is dangerous. We can help.

[zc4wp_sa3]

“It takes 20 years to build a reputation and few minutes of cyber-incident to ruin it.”

Stephane Nappo, Global Chief Information Security Officer at Société Générale International Banking