Hispasec Sistemas. Information Security and Technologies

Friday, July 25, 2008

Our Audit Services at Hispasec Sistemas include the study of systems to manage any vulnerabilities that may already be present. Once any anomalies have been located, they will be documented and reported to the individuals in charge. Proactive measures will be adopted to strengthen the systems, always following a sequential process to increase their level of security by learning from past errors.

These system audits let you know the exact status of your information assets with regard to protection, control and security measures. A system audit is like a thorough x-ray to diagnose the condition of your systems.

Service Phases

Our audit services consist of the following phases:

List of networks, topology and protocols.
Identification of systems and devices.
Analysis of services and applications.
Detection, check and assessment of vulnerabilities.
Specific measures to correct possible problems.
Real-time perimeter control with proprietary technology (Senson Scan Network).
Advice on implementing proactive measures.

Audit Types

There are different types of Audit Services:

Internal Audit. In this type of audit, the level of security and privacy in internal corporate/local networks is checked.
Perimeter Audit. This type of audit analyzes the corporate/local network perimeter and studies the level of security it offers against external entries.
Intrusion Test. The Intrusion Test is an audit method that involves attempting to access the different systems to see how well they resist intrusion. It complements the perimeter audit.
Forensic Analysis. A Forensic Audit is the most appropriate type of study for an "after-the-fact" analysis of incidents. It involves reconstructing how access was gained to the system, as well as assessing damage. If this damage caused system failure, then it is called "Postmortem Analysis".
Audit of Web Pages. This is designed to be an external analysis of a website, checking for vulnerabilities such as code for an SQL injection attack, confirming the presence and neutralization of Cross Site Scripting (XSS), etc.
Application Code Audit. Analysis of code for both web pages and any kind of application, regardless of the language used.

System audits are necessary

To ensure an optimum level of security in your corporate network, it is necessary to perform audits on a regular basis. Systems have to be audited periodically because of constant changes in the system setup, the introduction of patches and/or fixes for the software, and the acquisition of new hardware.

Make sure you are ready for interconnection. Audit your systems.

Please complete the form below to request additional information.

First Name:
Last Name:
Company:
Web Page:
Title:
Country:
Phone No.:
E-mail:
What kind of info do you want to receive:
Please specify the type of information you want (Optional):



In compliance with Organic Law 15/1999 on Personal Data Protection, the personal data you provide will be kept in a file created for that purpose by Hispasec Sistemas, S.L., in order to facilitate a seamless and efficient relationship with Hispasec Sistemas, and to provide a quick response to any queries, suggestions, and requests you may have. The data in this file includes name and last name of the individual requesting the information, contact telephone number, e-mail address, website, business type, and freestyle comments. At any time, our clients can exercise their right to access, rectify, cancel and/or object to the data contained in our electronic file called CONTACTOS, registered in the General Data Protection Register. To this end, please call the Hispasec Sistemas Legal Department at +34 951.010.548, or send an e-mail to . You will be assisted by our Head of Security, who is the person designated to protect the privacy and confidentiality of your personal data.