Home

Services - Independent & professional

Dotsec specializes in maintaining secure, available and accessible information services for its government, financial, legal, online-gaming, education and telco clients:

Independent Threat and Risk Assessments (TRAs) . DotSec delivers a range of information security services, and continues to acquire new skills, particularly in the area of application security assessments and secure-application penetration testing.

DotSec has conducted a range of assessments for many organisations including on-line payment providers, legal firms, financial and insurance organisations, schools and colleges, and government bodies.

DotSec has detected and demonstrated vulnerabilities where the consequences have included business-database modification, user-session tracking and keyboard-logging.
Security architecture and design. DotSec professionals are experienced in security architecture and design for J2EE and .NET environments. DotSec's security architecture experience is particularly relevant where n-tier and cross-platform security services must support online service delivery across the Intranet and/or the Internet.
Security services development and integration. DotSec professionals have designed and implemented n-tier security services for government, finance, petrochemical and education sectors. Secure web services Java and J2EE, Single Sign On (SSO), smartcard integration, secure directory services, PKI and Kerberos all feature in our project history.
IT Security training courses. DotSec has provided IT Security training for over five years, and has established reseller relationships with a number of training companies. DotSec's courses range from half-day information-security overviews, through to 3-day secure-application developer's courses. DotSec has the capacity to develop courses that meet an individual customer's requirements; for example, past courses have included smart-card developer's and network security courses. Please contact DotSec to enquire or register your interest.
Managed security services. DotSec's security engineers support the maintenance and administration of our client's services, at a range of remote sites. Traffic analysis, patching and maintenance, change management and customer notification are all features of our managed security service.

DotSec is proud of its long-standing customer relationships Much of DotSec's work is commissioned by customers who have worked with DotSec in the past. and evidence of DotSec's continuing commitment to offering a range of continuously improving services. works with you to understand your business processes, identify your IT business assets, and assess, manage and mitigate your risks. DotSec works with you to ensure that your security solution is holistic, rather than product-centric. In this way, DotSec ensures that your business requirements are met both now, and in the future.

References

With no advertising or marketing staff (at all!) DotSec gains new clients by reference.

And (except where the sensitivity of our work precludes it) our clients are happy to provide references to prospective new customers.

DotSec provided IdM-infrastructure requirements analysis, design, implementation and skills-transfer for a major Australian superannuation company. "No tears required - happy to provide the reference :) They can call me any time on either desk or mobile (details below).
Cheers."
Principal Technology Architect

DotSec completed the requirements analysis, design and implementation of the infrastructural security services that support a distributed, highly available and secure set of web sites and applications. "Please pass this along to your staff who have been working on [The Project]. This UNSOLICITED feedback is a reminder to me to thank everyone involved for the team effort in delivering this service."
Manager - Statistics Centre

DotSec continues to provide a range of managed IT services for [Investment Bank]. Over the past three years, DotSec has been responsible for the
design, implementation and maintenance of the company's server, desktop and Internet-services infrastructure. DotSec continues to provide 24x7 monitoring and alerting for all of the company's systems, and provides on-site and telephone support for all employees. "Happy to [provide a reference]. I'll get it drafted up today for you."
Associate Director

Details of these and other references may be provided in response to bona fide enquiries.