Security & Penetration Testing
Best practice and conventional wisdom still specifies a penetration test every year, or after major changes. However, with today's vastly magnified threat scenario, with ever-greater focus on data loss, ID theft, and fraud, this is generally considered insufficient; despite the current economic climate, an annual penetration test must be the absolute minimum. To understand why this is so, consider that every year approximately 8,000 vulnerabilities are discovered in commercial software.
While most of these large number of vulnerabilities will probably not affect your organisation’s infrastructure, even if only one percent impact your environment, your organisation could be exposed to a significant risk (statistically twenty per quarter, or almost seven per month on average). Can you afford to wait up to a year to check for this eventuality?
Network & application testing services
As a CREST company, commissum’s methodology applies common and consistent methods that build on industry standards, including the Open Source Security Testing Methodology Manual (OSSTMM), the Open Web Application Security Project (OWASP) and the Council of Registered Ethical Security Testers (CREST).
Our services, accredited under the CREST scheme, provide you with a high level of assurance of the quality, expertise and professionalism of the penetration and security testing services that we provide.
Our services include, but are not limited to:
Get in touch with one of our security consultants today
- No obligation
- Expert advice
- Tailored solutions
"commissum was particularly responsive and the project was well managed under demanding conditions. I was very happy with the technical standard. Very good value for money as well”
Mr Kenneth Y, Head of IT Risk & Compliance, International Retail Bank
Latest News
Botnets go mobile and net a lucrative catch
Researchers at security firm Symantec and at North Carolina State University have recently discovered a large and successful botnet -- with the twist that this one involves mobile phones, specifically Android smartphones.A botnet is a cluster of devices infected with the same malware (unknown to their owners), and under the ...Wed 15 Feb, 2012 //
Government cybersecurity report urges awareness rather than fear
The UK Government's Science and Technology Committee has released a report on malware and cybercrime in the UK.Malicious software, or "malware", infects computers and steals banking details and personal identity information, which can be used for identity theft. It poses a growing threat in the UK, as more people use ...Fri 10 Feb, 2012 //
UK cyber-security among the world's best in recent report
A new report collates the views of international cybersecurity experts to grade several countries according to the strength of their defence against Internet attacks.  The report, sponsored by the computer security company McAfee, ranks Israel, Finland and Sweden as the top-performing countries, with four and a half out of five ...Tue 31 Jan, 2012 //


