Security audit

The problem

Information security management requires regular reviews and tests of employed security controls. When these tests are omitted, the effectiveness and completeness of implemented controls cannot be assessed.

Inadequate or incomplete security controls may expose the information system to various external and internal threats which can cause significant financial and other losses.

The service

During a security audit, INFIGO IS's experts assess the overall security level of the client's information system and check the effectiveness of implemented security controls. Such an audit can, besides technical controls, also assess administrative and physical controls.

Depending on client needs, the security audit is performed against best practices and standards (NIST, COBIT, ISO 27001/27002) and custom methodologies developed by INFIGO IS's experts. In order for the audit to produce real business value for the client, specific business and security requirements are discussed before the engagement.

The benefit

Security audit services help our clients assess the security level of their information systems at different levels (administrative, technical and physical).

Usually, security audit is used as a management tool for getting independent evaluation of implemented security controls and checking their effectiveness.

contact 

• Security assesment
• Vulnerability scanning
• Penetration testing
• Web application security
• Security audit