DefenseCraft

Cybersecurity

Our Philosophy

Cybersecurity is not a product that can be purchased, nor is it an IT specific function. It’s a continuous organization wide process of education and technological improvement.

Our Mission

To develop an organization wide security aware mindset melded with carefully crafted policy and robust security controls.

Professional Services

Design

  • Governance Frameworks
  • Network Architecture
  • Security Controls
  • Policy Development

Testing

  • Vulnerability Assessment
  • Penetration Testing
  • Compliance Audits
  • Social Engineering

Risk Management

  • Risk Assessment
  • Compliance Strategy
  • Contingency Planning
  • Supply Chain Protection

Training

  • Security Awareness Training
  • Social Engineering Defense

Superior security strategies from leading-edge research

Cyber criminals are giving executives and IT departments sleepless nights. And the worries are increasing with frequent news of data breaches and ransomware. We want to help you fortify your network and educate your staff.

We do more than just harden and test your network and communication systems. We assist your organization in developing an integrated security posture that is built around a knowledgeable workforce.

Integrating Disaster Recovery with Information Technology Governance Frameworks

Overview   Disaster of a natural or man-made variety can strike a business without warning and may cause damage serious enough to interrupt operations for a significant period of time. This would cause loss of profit and reputation and could negatively impact all...

Ethics of Information Security

The stakeholder is a term for an individual impacted by a corporation’s activities, and is in contrast to the idea of shareholder, which is a part owner of the corporation. It originated from Ian Mitroff’s book "Stakeholders of the Organizational Mind" and broadens...

Ethical Conflicts in Cybersecurity

Ethical issues arise in the cybersecurity field when competing moral interests conflict. The following are examples of such conflicts.   A business has the right and need for access to the data stored on its networks and this can conflict directly with the...

Business Need for Investments in Cybersecurity

Introduction   In February 2017, Memorial Healthcare System (MHS) in southern Florida was assessed a $5.5 million penalty by the US Office of Civil Rights for HIPAA (Health Insurance Portability and Accountability Act) violations. The penalty was for “failure to...

Risks of Third Party Service Providers or Vendors

Few organizations can afford the cost of a dedicated and fully staffed SOC with initial startup and annual operating costs in the millions of dollars. Many businesses are outsourcing the SOC and SIEM functions to third party service providers. This requires that the...

Identity Governance & Administration (IGA) Software

    Introduction   One of the foundational components of the security architecture is the management of identity credentials and authorization to interact with data. Currently the method is a manual paper-based system routed between the HR department...

DefenseCraft

Cyberspace is dangerous. We can help.

[zc4wp_sa3]

“It takes 20 years to build a reputation and few minutes of cyber-incident to ruin it.”

Stephane Nappo, Global Chief Information Security Officer at Société Générale International Banking