IT security

IT security

The need for IT security is ever present. Business partners and customers want to know if the organisation have done enough to protect it’s information assets. IT security services provided by our IT security team helps identify the state of information security within the organisation.

Our professionals use a proven life-cycle approach to security assessment which provides for a high degree of flexibility from targeted compliance assessment to strategic advice. We work hand-in-hand with your executives, business owners and IT professionals to assess your current security posture, create a risk profile, and provide recommendations that immediately decrease both security and compliance risk for your organisation.

With the assistance of highly skilled and professional consultants, our IT security services enable the organisation to:

• stay updated with global information risk situation and security practices
• maximise returns on security investment
• reduce the risk of inadvertent data loss
• build strong, secure systems
• improve risk management and threat response
• tighten controls over the dissemination of internal data

Our professionals conduct technical analysis with expert, hands-on testing. We analyse the test results to remove false positives, focus follow-on testing, and begin to categorise and prioritise technical findings. FTI also analyses information collected from the interviews to develop an understanding of how things get done in an organisation, specifically its maturity, formality and culture.

Our Services

• Security Policy Consulting
  Develop policies and procedures based on the organisation’s business and information security needs that are derived from international best practices and standards.
  
  
• Security Risk Assessment
  Assess and evaluate enterprise-wide risks using the recognised RIIOT technique.
  
  
• Application Security Audit
  Perform an in-depth examination of the internal configurations and potential security holes within a database and application.
  
  
• Source Code Security Review
  Investigate the source code of an application to uncover security vulnerabilities, best practices violations, security design issues. We will review software source code to check for Trojan Horses, time and logic bombs, and back door, as well as software flaws such as inadequate bounds-definition and software race conditions that could allow the software to be exploited.
  
  
• Vulnerability Assessments and Penetration Testing
  Provide vulnerability assessments which maps out the network architecture to identify areas of weaknesses and assess likelihood of attacks. In addition to conducting vulnerability assessments, more rigorous penetration tests can be used to confirm whether identified vulnerabilities are exploitable.