Technical Consulting

Security incidents, results of a penetration test, new requirements, outtasking, or other backgrounds: There are many reasons for companies and organizations to take advice in matters of IT security. Even before starting a project, external expertise is decisive for a successful procedure. In every project, information security has to, at least, be taken into consideration; however, in many projects, it is an explicit requirement. Irrespective of whether a network or an Active Directory has to be designed, software programmed, or a hardware product implemented: Competent consulting from the beginning regarding questions of IT security prevents momentous mistakes in the fundamental design and saves high costs in the long term, which incur for a later revision.

In order to prevent conflicts of interest and ensure an enclosure between consulting and penetration tests, SySS commits itself to the following rules:

• Within the same project, various persons must be in charge of consulting and for conducting penetration tests.
• SySS does not commit to any vendors or products; the technical consultants do not receive commissions or payments for recommendations. Moreover, the consultants do not make any product recommendation but rather design requirements catalogs and check how they can be implemented.
• Depending on the scope of the project, a final penetration test by a different company can make sense to protect neutrality. This will be discussed in individual cases.

Technical consulting supports you in all central parts of an IT project:

• Network design
• Network redesign
• Network structuring
• Windows networks/Active Directory
• Software design
• Software development

• Network monitoring
• Incident management
• Disaster recovery
• Threat and risk management

• Evaluation and prioritization of weaknesses
• Tracking of weaknesses
• Planning of processes