Every computer system is vulnerable to attack. This can be due to flaws in the design of the infrastructure, weak configuration settings, failure to apply security patches, or poor security management. Even firewalls and anti-virus technologies are prone to vulnerabilities, and every day hackers are developing new ways of exploiting security weaknesses. Unauthorised access to your systems and data could have serious financial or legal implications, as well as damaging your reputation.
RSM Tenon’s information security specialists will work with you to highlight potential risks, enabling you to face today’s security issues with confidence. We offer a variety of specialist information security services designed to reduce the risk of unauthorised access to your systems and data.
- IT security reviews - we look at individual systems or networked infrastructures and provide advice and guidance on how to protect against common threats, i.e. viruses, unauthorised access and systems misuse. We can also ensure that your organisation is compliant with current legislative and regulatory requirements, such as the Data Protection Act 1998
- IT Benchmarking - we review your organisation’s IT controls against BS ISO/IEC 17799, the Code of Practice for Information Security Management, to see how you fair against ‘best practice’ and we also identify any exposure to IT risks
- Attack and Penetration service - we test the security of your organisation’s IT systems and networked infrastructures by simulating a real attack using the latest techniques and security software
- Code auditing – we review and identify any potential security issues as early as possible in the software development cycle, saving you considerable time, reducing costs and mitigating against the potential risk of releasing unsecured applications
Why would you need it?
- You have concerns over the security of your organisation’s IT systems
- You want to be able to provide assurance to partner organisations or supply chain as to the adequacy of your organisation’s information security arrangements
- You have an e-commerce website and are trading on-line and want reassurance that your systems and processes are secure
- Your organisation has suffered a security breach and you would like this investigating and adequate measures implemented to prevent a reoccurrence
- You require an independent review as part of your organisation’s IT governance arrangements or are looking for assurance over legislative and regulatory compliance