Net Complaince Solutions Products & Services
Net Compliance Solutions offers security services designed to help our clients implement high value strategic security initiatives based on a thorough understanding of the clients current security environment as it compares to "best practice" security guidelines and regulatory compliance standards.
In addition, NCS offers high value security consulting and testing services that address specific issues concerning internal and external networks, web applications, internal applications, gap analysis and regulatory compliance, and incident response.
NCS Services include:
- Strategic Security Assessment (SSA)
- Gap Analysis
- Network Vulnerability Management
- Penetration Testing
- Application Stress Testing
- Code Review
- Malware Protection
- Phishing Protection
- Wireless Vulnerability Analysis
- PCI Standards Services
- Log Monitoring & Management
- Secure Coding Techniques & Training
- Incident Response
Strategic Security Assessment
The Strategic Security assessment service is designed to help clients move from a technology driven to a strategic management driven security plan.
We help our clients determine where they are, where they need to be, and implement a strategy and detailed plan to get them there.
We measure against general security standards such as ISO and CoBit, and regulatory standards such as Sarbanes-Oxley, GLBA, HIPAA, FISMA, and the PCI Standards
Gap Analysis
A subset of Strategic Security Assessment, our Gap Analysis service provides specific information regarding the current state of a clients security function compared to the individual requirements of a particular regulatory standard. Detailed reports with recommendations by line item are produced. SOX Gap Analysis, GLBA, Gap Analysis, HIPAA Gap Analysis, PCI Gap Analysis, ISO and CoBit Gap Analysis are some of the services available.
Network Vulnerability Management & Assessment
NCS offers a complete vulnerability management and assessment service that includes periodic internal and external network scans and vulnerability assessments. The service provides scans on-demand with no hardware to install or maintain. The service provides detailed reporting summarizing the severity of discovered vulnerabilities. Fixes for each vulnerability are presented in sufficient detail to implement corrective action. Annual testing packages provide for quarterly testing services as required by compliance standards such as PCI DSS and PA DSS.
Penetration Testing
Penetration Testing services are available to fully test web and internal applications to include a detailed examination of both the network layer and the application layer. Annual certification packages are offerred that ensure on-going compliance based on the standards from OWASP, NIST, and OSSTM.
PCI Standards Compliance Service
The PCI Standards Compliance Service is designed to help merchants and service providers conform to the requirements of the PCI Standards (PCI DSS and PA DSS). Depending on the needs of the client, the service may include a detailed PCI Gap Analysis, Self-Assessment Questionnaire guidance, quarterly vulnerability scans and vulnerability assessments, annual penetration testing, code review, wireless vulnerability analysis, and physical security testing.
Wireless Vulnerability Analysis
NCS provides services to discover, monitor, and prevent un-authorized access to wireless environments.
Log Monitoring
Secure Coding Techniques and Training
Incident Response
NCS Incident Response service assists clients in formulating an incident response policy and procedures manual with special emphasis on the public facing portion of the incident response process, that part of policy which deals with law enforcement, media, customers, pr agencies, etc.