CYBERSECURITY AUDITING

Our Cybersecurity Audit practice helps our clients identify potential risk, namely, Technical Vulnerabilities through one-off or Persistent Penetration Testing (KEEP-IT-SECURE-24), providing recommendations and support to mitigate identified issues.

We help our clients to identify their security risks and vulnerabilities and also the compliance level of their Information Security Management Practice, in order to thoroughly acknowledge their risks and are able to address them in accordance with the mitigation recommendations provided by our audit team.

Audit projects are customized according to the needs and aims of our clients. They can be technical component, processes, people or more broadly combined context oriented. They can also be oriented to deal with questions related to compliance or regulation.

The kind of projects with higher demand in our Audit practice refer to Penetration Tests, in which our consultants, in order to identify existing vulnerabilities, act as if they were attackers. Our team provides recommendations to mitigate the identified vulnerabilities. These Audits may be one-shot or persistent, through the KEEP-IT-SECURE-24 service.

TYPE-PROJECTS

External or Internal Penetration Testing
Persistent Penetration Testing (KEEP-IT-SECURE-24)
Mobile Applications Penetration Testing (Android, iOS or WindowsPhone)
Security Audit for Gambling Equipment
Data Breach Prevention
Testing specific Security Controls

Penetration Testing of IoT Appliances (Routers, Television, Drones, ...)
Security Audit/ Penetration Testing of SCADA / ICS networks
Security Audit Telecom Systems
Reverse Engineering
Source Code Review
Technical Assessment of Architecture / Configuration

Social Engineering
Digital Forensic Analysis
Audit / Evaluation of External Suppliers (3rd Parties)
Information Security Management Audit (ISO 27001)
Internal Security Audit ISO 27001

Portugal

Av. João Crisóstomo, n.º 30, 5º
1050-127, Lisboa | Portugal
T: +351 21 33 03 740
E: info@integrity.pt

United Kingdom

Suite 4B
43 Berkeley Square
Mayfair, Westminster
London, W1J 5FJ | United Kingdom
T: +44 20 3318 0800

España

Calle Edgar Neville, 6
28020, Madrid | España

PenTesting Project

Audit projects are customized according to the needs and aims of our clients. They can be technical component, processes, people or more broadly combined context oriented. They can also be oriented to deal with questions related to compliance or regulation.
Read more »

Persistent PenTesting (MSP)

At KEEP-IT-SECURE-24 we test your Security in a continuously way and provide you a cost-effective model in a Managed Service approach. Find out about the other features that make our model unique.
Read more »

Mobile Application Penetration Testing

INTEGRITY proposes to carry out penetration tests that include the security of client's applications installed on mobile devices and on the backend services that support them. In this sense, INTEGRITY proposes a holistic analysis to the mobile application's security.
Read more »

ISO 27001

ISO/IEC 27001 is the best-known standard in the family providing requirements for establishing, implementing, maintaining and continually improving an information security management system (ISMS) within the context of the organisation.
Read more »

ISO 27701

ISO 27701 provides specific requirements and guidance for continuously establishing, implementing, maintaining, and improving a Privacy Information Management System (PIMS) as an extension of the Information Security Management System (ISMS) defined in ISO 27001.
Learn more »

General Data Protection Regulation (GDPR)

Preparation of a corporate governance model that will help adopt and comply with all recommendations and demands (such as policies, accountability frameworks, monitoring and control processes and mechanisms) is a pressing concern.
Read more »

Payment Card Industry Data Security Standard (PCI-DSS)

Persistent management service entirely focused on PCI-DSS requirements.
Read more »

Set of PCI Compliance services customized and delivered by a certified QSA team, focused on customer assistance, and activities supporting the compliance with PCI-DSS requirements.
Read more »

We not only audit the environment of the organisation but also assist to implement the required controls. Our services are customised to meet your needs.
Read more »

Risk Management

Through the use of Risk Management software, organizations will often will uncover more systemic issues, and allow companies to not only prioritize events by risk, but also report on those risks to foster continuous improvement.
Read more »

Compliance Management

IntegrityGRC works with upper levels of management to ensure strategies are in place to deal with compliance problems when they occur before the reputation and integrity of the company and its staff are jeopardized.
Read more »

Custom Project

Complex and peculiar problems deserve a multi-disciplinary response. Our specialized and crosswise know-how allows us to respond in a more assertive way to the most critical challenges.
Read more »

INTEGRITY 360º Security Review

In order to support organisations, INTEGRITY introduces INTEGRITY 360º Security Review, a holistic service to provide current and multidisciplinary status on the maturity, risks, and vulnerabilities of the organisation in different vectors.
Read more »

Teleworking & Secure Business Continuity

Multidisciplinary risk assessment service in the Business Continuity and Telework context.
Read more »

Ransomware Resilience Assessment

Structured multi-disciplinary assessment of resilience in the context of Ransomware threats.
Read more »

IntegrityGRC

IntegrityGRC is a platform that helps organisations to manage their processes, risk and compliance in a structured way. Our platform creates a close link between the Security organisation, its management and its operational practice, providing full control of the Organisation’s Information Security Management.
Read more »

27001 Manager

Specially designed to meet all 27001 requirements and effectively support your information security program. 27001 Manager operates security effectively and helps obtaining compliance as the result of this seamless link. It contemplates features that allow knowing both the big picture and the details required by the ISMS, at any time.
Read more »

InfosecRating

Infosec Rating is a Solution that allows you to manage your third-party risk. Through this Solution it is possible to support a continuous process of improvement and risk reduction, also providing analytical information and benchmarking.
Read more »

Keep-It-Secure-24

Companies usually hire Pen-Testing once a year to test their Security. At KEEP-IT-SECURE-24 we test your Security in a continuously way and provide you a cost-effective model in a Managed Service approach. Given the dynamics that applications and infrastructures require these days, testing your Security once a year is a poor approach to your company’s Security. Find out about the other features that make our model unique.
Read more »

Keep-It-Managed-24

It's a dynamic and continuous Consulting Service designed to meet the requirements of ISO 27001. It's supported by IntegrityGRC Platform to withstand and maintain the desired goal in the Information Security Management context.
Read more »

Security Management

The Information Security Management tracing addresses a blend of Best Management practices, based on the most common Standards and Frameworks, such as ISO 27001, COBIT, ITIL, among others.
Read more »

Security Awakening

The practice of Information Security Management is a strategic action in organizations for a transversal and effective approach to Security.
Read more »

Security Development

The track of Secure Development is composed of different modules that aim to equip development professionals with safe code practices, addressing practical cases, common vulnerabilities, as well as the best practices to adopt in this context. Application development errors are the source of a considerable number of Security vulnerabilities.
Read more »

Auditing Solutions

360º Security Review

Mobile Application Penetration Testing

Persistent PenTesting (MSP)

CYBERSECURITY AUDITING

Our Cybersecurity Audit practice helps our clients identify potential risk, namely, Technical Vulnerabilities through one-off or Persistent Penetration Testing (KEEP-IT-SECURE-24), providing recommendations and support to mitigate identified issues.

TYPE-PROJECTS

CONTACTS

Portugal

United Kingdom

España

Our Solutions

PenTesting Project

Persistent PenTesting (MSP)

Mobile Application Penetration Testing

ISO 27001

ISO 27701

General Data Protection Regulation (GDPR)

Payment Card Industry Data Security Standard (PCI-DSS)

Risk Management

Compliance Management

Custom Project

INTEGRITY 360º Security Review

Teleworking & Secure Business Continuity

Ransomware Resilience Assessment

IntegrityGRC

27001 Manager

InfosecRating

Keep-It-Secure-24

Keep-It-Managed-24

Security Management

Security Awakening

Security Development