Service Overview - Security

Leaving it up to internal staff alone to evaluate key security processes, policies, and designs and not having a trusted third party validate your security posture can be a recipe for disaster. Increasingly it has been proven that without 3rd party review, security policies often remain unimplemented and un-enforced. Machines on the internal network remain vulnerable to outside attack. Infected hosts outside the network can be manipulated to gain access to sensitive hosts on the inside.

Most organizations have segmented security functions across multiple departments. Internal politics, distributed management, and budgetary constraints all contribute to security fragmentation and a disconnect from unified security policy. As technologies continue to converge these problems become more and more apparent. For example, telecom, physical security and network security are now irreversibly linked.

At MainNerve we have become experts at analyzing security across all operational segments of an organization. By employing MainNerve to validate your organization’s security you are taking a proactive step toward safeguarding both confidential customer information and intellectual property.

Employ MainNerve to perform individual services or utilize all available methods for a more holistic approach. All security services can be provided on an incremental or as needed basis.

• Vulnerability Assessment - MainNerve’s dedicated and highly qualified staff will employ commercial and open source tools to provide a hacker's point of view of your network and demonstrate exactly how a skilled and motivated attacker would penetrate your network.
• Penetration Testing - MainNerve takes the typical security vulnerability assessment to another level. We not only detect vulnerabilities in the network and systems, we also show the typical attack path taken to exploit those vulnerabilities using MainNerve's advanced attack methodology. Using a combination of home grown, open source and commercial-based, software and hardware, as well as human intelligence, MainNerve will determine specific attacks that result in unauthorized access.
• Wireless Security Analysis - Wireless networks and Mobile Devices such as laptops and PDA's have become a fixture in the productivity tools of many companies today. As a result many vulnerabilities are introduced into a corporate network through the use of these tools. MainNerve will not only assess the security and design of your wireless infrastructure, but will take the assessment to the next level.
• Physical Security Evaluation - MainNerve staff will assess your organization’s physical security posture as it relates to the safety of critical systems and data assets. Through various physical security testing measures and social engineering tests, MainNerve will provide a comprehensive analysis of the weak points in your physical infrastructure and provide a detailed gap analysis.
• Secure Code Review - Working with your internal software engineers MainNerve analyzes software architecture/design and will perform an in-depth review of the code utilized within the program. Secure code reviews can be conducted during and at the end of the development phase to determine whether established security requirements, security design concepts, and security-related specifications have been satisfied.

"Through our managed security services MainNerve will validate your organization’s security posture and help you achieve a high level of confidentiality, integrity and availability." - Ian Dawson, Director of Operations & Development