Technical Security Services (TSS) offers a unique mix of services to the Australian market.
Our services are divided across three core service lines.
Strategic - To assist you with long term planning and developing an effective and implementable roadmap to improved security. This includes security posture snapshots, security architecture and security design reviews.
Tactical - Agile and flexible access to personnel with deep technical expertise for short term security assessments and validation. This includes red teaming, application penetration testing, infrastructure penetration testing and secure code reviews.
Operational - Active day to day managed protection of your business from personnel who live and breathe security. This includes incident response, enterprise intrusion discovery and managed security service.
Red Teaming - an emulated cyber-intrusion from the Internet, based on the methods and techniques successfully employed by real-world attackers today, but in a trusted and controlled manner.
Application Penetration Testing - a technical assessment of the security controls implemented within an application or system. The assessment identifies specific security weaknesses and mitigations, and allows your business to understand its attack surface from the vantage point of an attacker.
Infrastructure Penetration Testing - a technical assessment of the security controls implemented within a networked system or an enterprise environment. The assessment identifies security vulnerabilities and mitigations more broadly, and allows your business to verify whether your actual security controls match their intended design.
Secure Code Review - a review that uses automated and manual source code analysis to identify common classes of software vulnerabilities.
Incident Response - a rapid response service from personnel with extensive incident response experience, designed to determine the extent of a compromise, contain the damage, eradicate the threat and have your business back on track and protected in the shortest possible time.
Enterprise Intrusion Discovery - an advanced persistent threat (APT) discovery service, designed to provides the necessary breadth (network detection) and depth (host inspection) to discover evidence of cyber intrusions and malware that has circumvented your existing security controls.
Managed Security Service - a range of tailored services designed to meet specific requirements, such as 24x7 security monitoring, compromise discovery, incident response and vulnerability analysis.
Security Posture Snapshot - a high-level review of the technical, strategic, organisational and cultural security issues throughout an organisation. The snapshot will provide a detailed and prioritised security roadmap that lays out a clear path to improved security that is practical, implementable and affordable.
Security Architecture Review - a review of the security controls implemented within a system to ensure threats are mitigated. A threat and attack modelling approach is used to provide comprehensive coverage.