Using the rich experience both in the extent of building and securing the IT environment, we offer an effective and efficient security audit service.
Within the framework of the service, we perform:

• An environmental inventory
• Network, systems and applications security tests
• Susceptibility identification (weak system points)
• A review of the system configuration and checking the compliance with best practices
• Verification of following procedures, policies and socio-technical tests in the extent of the so called “staff awareness”
• Verification of the compliance of the systems with the assumptions of the existing security policies as well as the existing normative materials

As a result, the client receives a report, in which all the found susceptibilities are described in a clear manner, and the risk factor for each of them is assessed.  The risk factor allows for the assessment as to which of the problems should be solved in first order, and which are of a lower priority or constitute an acceptable risk.  The risk factor is indicated on the basis of an elaborated, author’s methodology used in the servicing of financial institutions. A very valuable part of the report are recommendations, in which the manner in which the systems should be reconfigured is indicated, as well as what securities should be implemented and which practices should be applied, in order to eliminate the identified susceptibilities.  This part of the report is designated for the technical staff, who are responsible for the system configuration.

The statistical part of the report, which allows the system to be observed from a wider perspective, and funds to be invested efficiently in the area covered by the audit, is designated for the management staff.

Benefits for the client:

• The possibility of using the knowledge of the best specialists in the sector,
• Complete knowledge on the topic of the factual status of the environment,
• Complete knowledge on the topic of the system's susceptibility to threats,
• Clear guidelines allowing for the removal of weak points in the system,
• Guidelines for the further development of the examined solution,
• Knowledge regarding the discrepancy between the imagined and factual status of the processes taking place????
• A basis for efficient/optimal security management,
• A secure system,
• A guarantee of the highest quality provided services.

Remuneration

The remuneration system in the case of Auditing/Consulting services is dependent on the number of the systems, servers and applications, which are subject to the Audit process as well as all other actions  foreseen in the project. Our offer, as in the case of other services offered by Cyclad, is prepared each time with the consideration of the needs as well as the budget foreseen by the client.

Warranty

Cyclad guarantees that as a result of the Audit, the client shall receive reliable knowledge on all the system susceptibilities learned during the conducted works. Moreover, the provided recommendations enable the undertaking of effective repairing actions.