Cyber Security — Certa intelligence & security

Cyber Security

Cyber-security

Many companies own sensitive information, which can be misused with important detrimental consequences. This information is stored and handled in ever-larger IT systems, which are at risk for being illicitly accessed.

It boils down to the fact that daily business at most companies relies on IT systems, which are at risk for significant and intrusive attacks.

This increased vulnerability and the serious consequences of potential cyber-attacks, means that cyber-security must necessarily be a strategic priority for many companies.

CERTA provides advice and assistance in building and developing individual companies’ cyber-security. This is typically done through a Cyber Review, or through deeper cooperation, establishing a Cyber-Defence.

CERTA provides advice and assistance in building and developing individual companies’ cyber-security. This is typically done through a Cyber Review, or through deeper cooperation, establishing a Cyber-Defence.

Cyber Security

Cyber Review

A Cyber Review entails that CERTA reviews the company’s cyber-security in order to identify areas where security should be expanded or strengthened. CERTA’s assessments and recommendations are developed based on a concrete threat- and risk- assessment, a technical review of the company’s network and an analysis of the existing security measures.

Part of the Cyber Review entails that CERTA performs a penetration test of the company’s network, as well as a technical assessment of the extent to which the company’s network is compromised (Compromise Assessment).

A Cyber Review is designed to answer the following questions:

  • What is the threat picture, and which cyber threats and risks are relevant to the company?
  • What will the consequences be, and how vulnerable is the company, in the case of a security incident? And does the company have an adequate contingency plan?
  • Is the company’s security level adequate? Are the necessary and expected security measures taken?
  • Are the security measures effective, and does the company use its resources efficiently in its cyber-space, including potential security solutions?

As an external, independent, and qualified party, CERTA will perform a Cyber Review that both supports the company’s own cyber efforts and meets the company’s responsibility to demonstrate the necessary diligence in handling cyber threats and risks.

The results of CERTA’s Cyber Review will be compiled in a written report. This can be used by the company’s leadership to determine the company’s approach to cyber-security, to make strategic decisions regarding the need for further security measures, and to plan for the corresponding expenses. CERTA can also assist the company with implementing these initiatives.

Cyber Defence

An effective cyber defence requires that the company can act proactively in regards to concrete threats, and that the company is able to quickly recognize, assess and deflect concrete attacks, thereby limiting potential consequences as much as possible.

In relation to this, CERTA proposes three services fundamental to an effective cyber defence:

Cyber Intelligence

CERTA will help the company establish an early warning system, which involves continuously collecting and treating internet-based intelligence about concrete attacks planned against the company – including the identity of the attackers, their methods and access techniques – leaked information, technical aspects and other vulnerabilities that could be used in a cyber-attack. This intelligence will allow the company to be proactive and adapt its behaviour.

Cyber Monitoring

CERTA will, either continuously or on an ad hoc basis, carry out surveillance of a company’s network. The monitoring will allow the company to identify and address eventual leaks and compromises of its information systems, helping it to limit damages quickly.

For companies hit by a cyber-attack, CERTA offers assistance in the form of a Cyber Response. CERTA will assist the company in investigating, assessing and reacting to the attack.

WANT more information?

Web - More information [ENG]
  • REQUEST CONTACT