Cybersecurity | Internet Security Services for your Business

Latest news.

Devoteam announces the acquisition of Integrity to boost its Cybersecurity activity and managed services across EMEA. Read more

Devoteam Cyber Trust launches a whitepaper "People-First - A new paradigm in cyber resilience with the Alert Readiness Framework (ARF)". Read more

Devoteam Cyber Trust held a Themed Breakfast with its clients, where they discussed the importance of the Red Team and how it influences the resilience of organisations in a cybersecurity context. (content in PT) Read more

Managing partner of Devoteam Cyber Trust, Rui Shantilal, participates in the podcast "Ciber Minuto," where he deconstructs various cybersecurity concepts. Listen here. (content in PT) Read more

Devoteam Cyber Trust has been recognized as a QSA (Qualified Security Assessor) to conduct PCI DSS audits. Read more

Devoteam Cyber Trust launches the 2023 ebook - Top Vulnerabilities and Recommendations, with a new feature this year. Read more

Devoteam Cyber Trust launches an innovative cyber-resilience framework called the "Alert Readiness Framework" (ARF). Read more

Cybersecurity Services

We are a Consulting and Technological Audit company with a strong emphasis on Cybersecurity. In fact, we offer services that allow our clients to have their information secure against potential incidents and security attacks.

Offensive Security

Our Offensive Security Services helps our client to identify potential risks, namely, Technical Vulnerabilities through one-off or Persistent Penetration Testing (KEEP-IT-SECURE-24), on top of this, Devoteam Cyber Trust also provides recommendations and support to mitigate the identified issues.

Consulting

We support our clients in the implementation and adoption of controls used to effectively reduce the risk. Based on the deep knowledge and experience of our team we help companies to implement Information Security Management Best Practices and Standards.

Cybersecurity Engineering

Our Cybersecurity Engineering practice provides an integrated solution that not only helps our clients determine the weaknesses of the technological and procedural aspects, but also to define and guide to its resolution, in accordance with the best recognized information security practices.

Professional Services

Our Professional Services offer allows companies to integrate consultants specialising in cybersecurity directly into their internal teams. With over a decade of experience in the field, we apply demanding selection and monitoring processes, ensuring high standards of competence and the integration of the best cybersecurity talent.

Training & Awareness

Organisations tend to invest in Technology and Processes but the weakest link is People. Thus, it is essential to assure the balance between these three elements of Information Security.

Our team.

A team can only feel good about its clients if it feels good about itself. At Devoteam Cyber Trust we give utmost importance to knowledge sharing, good working environment and healthy competition to obtain the maximum performance in what we do.

Devoteam Cyber Trust is essentially supported by a group of Expert and Senior professionals who are able to work in every area of focus due to a combination between their expertise and relevant Internation certifications.

Qualifications:

MSc in Information Security (Royal Holloway)

PostGraduate in Information Security (Royal Holloway)

Certified Information Systems Auditor (CISA)

Certified Information Security Manager (CISM)

Certified in Risk and Information Systems Control (CRISC)

ISO 27001 Lead Auditor

Certified Information Systems Security Professional (CISSP)

Information Systems Security Management Professional (CISSP-ISSMP)

Offensive Security Certified Professional (OSCP)

GIAC Penetration Tester (GPEN)

eLearnSecurity Web application Penetration Tester eXtreme (eWPTX)

ITILv3

Offensive Security Web Expert (OSWE)

PCI QSA (Qualified Security Assessor)

SWIFT Certified Assessors in Customer Security Programme Assessments (CSP)

Innovation.

We can't keep fighting current and future threats the same way we used to in the past.
Constant threat evolution and information technology dynamics, compels for a constant adaptation of practices, tools and approaches in the Cybersecurity world.
Capitalizing our experience, know-how and acknowledgment of current requirements, Devoteam Cyber Trust has in its DNA the need to constantly create new and innovative approaches that can bring added-value.

Learn how we approach the innovation area.

Certifications & Accreditations.

We are a certified company that is focused on protecting its client's information and providing a world class service based on Industry Standards and best practices.

ISO 27001 International reference and standard in Information Security Management. Its principle is to adopt a set of requirements, processes and controls to properly manage organisation risk. The goal of the accreditation has been the protection of our clients projects information. Read more

CREST We are the only Portuguese company approved by CREST concerning its Penetration Testing services, that take into account all the Technical and Management issues of Penetration Testing. Read more

ISO 9001 International reference and standard in Quality Management. The scope of our certification has been Consulting, Auditing and Advisory in Information Security and Implementation of Management Systems. Read more

PNSC We undergone a process of accreditation with the Portuguese National Security Cabinet (PNSC) to meet customer requirements and requests regarding the access and handling of classified information. Read more

PCI QSA Integrity S.A. was recognized by PCI Security Standards Council as a Qualified Security Assessor (QSA) certified entity, being our team of qualified consultants now capable of auditing companies’ processes associated with payment card transactions independently, in accordance with the PCI-DSS global security standard. Read more

BancontactWe submitted to the accreditation process by Bancontact for payment security assessments in mobile applications under the Bancontact approval system. Read more

ISO 27701International standard addressing Private Information Management Systems. Its principles involve defining requirements and providing guidance to assist businesses in managing privacy risks related to personally identifiable information. The scope of certification aims to protect customers' personal data and ensure compliance with privacy regulations. Read more

EPIWe are accredited by the European Payment Initiative (EPI) to conduct security assessments of Wero, the mobile digital wallet, specifically for mobile payment applications, in compliance with the EPI Scheme. Read more

Our clients.

We provide service to a considerable number of large and medium-sized companies both at a national and international level. if you wish to find more about our references and projects, we will be happy to arrange a meeting with you.

Banking and Insurance

Retail

Aviation

Industry

Energy

Healthcare

Government

Service Organisations

Transportation

Information Technology

Telcos

Entertainment

Testimonies.

Banking

"It’s very easy and reliable to work with Devoteam Cyber Trust."

Government

"External auditors say that they have never seen similar methodologies and they really make sense."

Industry

"Thank you very much for your commitment and thanks for being so professional."

Energy

"This is a win-win service and the report level is amazing."

Health

"The project is a success, the team has loads of technical expertise, they performed above expectations."

Global reach.

Currently we provide services in more than 20 Countries over 5 Continents.

Labs.

by Bruno Morisson

The Curious Case of Apple iOS IKEv2 VPN On Demand

TL;DR Apple’s iOS IKEv2 VPN On Demand may leak traffic when it is unable to establish an IPSEC tunnel to the defined VPN gateway. We’ve reported this to Apple, and after analysing it they didn’t consider it a security issue. Details VPN On Demand is a feature from iOS (and OSX) that allows the enforcement of a specific set of rules when the connection being used by the iOS device requires a specific VPN connection in order to...

Find out more of these on our Labs page

by Bruno Morisson

XXE ALL THE THINGS!!! (including Apple iOS's Office Viewer)

This article summarises the discovery and analysis of the XXE vulnerability in Apple iOS Office Viewer (CVE-2015-3784). It assumes the reader already has a basic understanding of XXE attacks. Also, tests are performed on a jailbroken iOS device for...

by Marco Vaz

FROM 0-DAY TO EXPLOIT – BUFFER OVERFLOW IN BELKIN N750 (CVE-2014-1635)

A vulnerability in the guest network web interface of the Belkin N750 DB Wi-Fi Dual-Band N+ Gigabit Router with firmware F9K1103_WW_1.10.16m, allows an unauthenticated remote attacker to gain root access to the operating...

Headquarters

Torre Fernão de Magalhães
Avenida D. João II, nº 43, 9º Piso, Parque das Nações
1990-084, Lisboa | Portugal
T: +351 21 33 03 740
E: info@integrity.pt

And we are present in 18 more countries across EMEA.

Name

E-mail

Message

By ticking this box, you will be declaring that you have read and agree to the Privacy Policy of INTEGRITY S.A., and that you may be contacted via email regarding your request. The personal data entered on this website is collected, used, recorded, and processed in accordance with the General Data Protection Regulation (GDPR) and our Privacy Policy.

Cookie Consent X

Devoteam Cyber Trust S.A. uses cookies for analytical and more personalized information presentation purposes, based on your browsing habits and profile. For more detailed information, see our Cookie Policy.

Making your tech
journey more secure.

Passion for
Cybersecurity

Partnership Attitude

Adaptability

Focus on Excellency