Services
The following are services that RoninSec personnel can provide to your organisation as a fixed fee engagement, or at a pre-agreed hourly rate with or without a retainer and associated service levels.
Download our security testing services flyer or our security governance services flyer.
| Service | Description | Benefits |
|---|---|---|
| Security Charter Development | In consultation with your senior business stakeholders, develop a set of principles to direct your information security function. | Risk appetite of your organisation enshrined in a document agreed by all. |
| Security Policy and Standard Development | Creating security policies and technical standards. | Sets strategic direction to desired risk appetite and provides repeatable, standardised security. |
| Security Procedure Development | Development of security procedures such as firewall management or platform-specific user access management. | Provides step-by-step repeatable processes to ensure high risk or critical security activities are undertaken correctly. |
| Web Application Security Testing | Automated and manual security assessment of authentication, session management, input validation and authorisation. | Identifies issues for remediation by developers. |
| Firewall Configuration Examination | Examination of firewall configuration to check if only approved communications are permitted. | Identifies improvements to firewall configuration that can be completed by your firewall engineer. |
| Network Security Testing | Automated security assessment of network listening services complemented by manual investigation and internet research. Can be performed from the Internet or your local network. | Helps you meet the requirement for an "annual penetration test". |
| System Configuration Examination | Comparison of your system configuration against industry consensus benchmarks or vendor deployment guidance. | Identification of improvements that can be made to your system security. |
| Virtual Chief Information Security Officer | Designated RoninSec personnel will act as your Information Security Manager. | Provides coverage of responsibilities until a permanent employee can be found. Cost effective for small organisations with high security requirements. |
| Virtual Security Architect | A RoninSec consultant can work as your security architect on your new IT project. | Anticipate and avoid common security issues and reduce time to market. |
| Medical Device Security Assessment | We penetration test your medical devices and associated software and services to a set of common sense criteria. | Helps meet United States FDA and Australian TGA pre-market cybersecurity requirements. |