Services - Threat & Risk Assessments

• Organisations in most sectors have been subject to various hoaxes and scams that have aimed to steal and record customer authentication information.
• Secure-application development continues to pose a challenge to online businesses world-wide. Challenges include the diverging forces of ever-more complex application requirements, faster time to attack and exploit, and increased user-responsibility.
• The OWASP organisation lists a range of vulnerabilities that continue to occur in the online applications of a range of organisations. TRAs conducted by DotSec during 2002-09 have backed these findings.
• Recent Computer Crime survey reports showed that IT security continues to grow in importance and cost, with an increase in the number of respondents suffering a computer security incident in recent years.

• Independent Threat and Risk Assessments (TRAs). DotSec works with you to understand your business processes, identify your IT business assets, and assess and manage your risks. You can be certain of receiving a complete and concise report, as our assessments are not clouded by any product-reseller obligations, or software-vendor partnerships.
• DotSec security professionals have conducted a wide range of Threat and Risk Assessments (TRAs) and Security Audits for a range of organisations. TRAs are based on standards including AS/NZS 4360, 4444 and 17799, and Australian government standards ACSI 33 (Federal) and IS18/IT&T-14 (State).
• DotSec conducts application security assessments for organisations in the government, banking and legal sectors. We have supported our clients as the approach their software vendors to address software vulnerabilities, and improve secure-application development processes.
• DotSec security professionals have the capability to produce assessments that include all aspects of an organisation, from its policies and procedures to its core service implementations, and from its network infrastructure to its n-tiered application design and implementation.