Identifying your threat exposure is a critical process in your risk assessment. Vulnerability management and pentests are two preventive controls that would help you in this identification process.
We don't simply throw off Qualys report on your desk; discovered vulnerabilities needs to be scored in a way that would ease the integration of test results in your risk assessment framework. Consequently, leveraging the capacity to bring accurate metrics in your risk analysis and help you to determine the most critical controls that needs to be prioritised for implemention.
Identification of vulnerabilities and threats is one thing but the key is to address these issues through a corretive action plan by implementing cost-effective controls to lower your risk.
Amtal's core speciality is to bring security solutions through processes, technology and rationalised controls.
We must admit it, we are be fans of Open Source. Not because its free but because it flexible and supported by a vivid community of skilled developpers.
Maximization of these valuable log traces to create dashboards, identify clipping levels and spot attackers is a complex task. And it doesn't stop there; once identified, you need to react in a prompt and efficient manner. Via Security Monitoring and Incident Response practice, we aim to bring together this efficiency by taking the best value from your already implemented controls.
Amtal Security is a small information security agency specialized in preventing and detecting threats hitting information systems. Our expertize is focused on the technical aspect of the security and our strategy is bottom up. We strongly believe that any security controls should be mapped and be integrated in your risk assessment framework and documented in your security policies.
Specialized in detection, prevention and offensive security, Amtal consultants are also certified ISO 27001 Lead Implementers and are familiar with Risk Management methodologies. This enables us to bridge technical security with governance by supporting our customers to integrate their security controls through a structured Information Security Management System aligned with industry grade best-practices and standards.
No doubt, we like to get our hands dirty! Amtal security consultants loves to pop-up shells on a sunny afternoon or tweak your SIEM and IDS rules to identify new threats. We also do basic malware analysis and share small developpments via our github accounts.