» Managed Services

WhiteHat's Managed Services Suite provides you with all encompassing advanced notifcation of any security issues you could possibly encounter in your day to day public and private asset security management. Our Managed Services Suite also provides you and your management and executive with the satisfaction that your are protected to the level that is required.

WhiteHat's Managed Services Suite is branded Aegis. The word "Aegis" is a reference that dates back to Greek mythology, with connotations of a protective shield, as aegis was the shield of Athena. The concept of doing something "under someone's aegis" now means doing something under the protection of a powerful, knowledgeable, or benevolent source.

Web Application Security Audits

You can no longer ignore the security of your Web applications. Web applications collect personal, classified, and confidential information such as medical history, credit and bank account information and user satisfaction feedback. Additionally, if your organization is bound by legislation or industry compliance such as HIPAA, GLBA, PCI, or Sarbanes-Oxley to protect the privacy and security of identifiable personal information, there is the risk of being found guilty of non-compliance if hackers gain access to sensitive information.

WhiteHat's Aegis Web Application Security Audit Managed Service will provide you with an overview of the effectiveness of the security controls you have in place to protect your web applications from attack every week, month or at a frequency your organization requires.

Website Risk Management

Organizations must develop a strategy for website risk management. Website security is more than a tally of the latest vulnerabilities that may threaten a company’s websites. It’s also about managing risk. Website security data is not solely the domain of the security team because sites are used by auditors, compliance, product management, and developer organizations within the company as well.   And, because there is no pre-existing infrastructure of independent software vendors pushing-out standard patches for commercial products, applying the rules of traditional OS simply does not guarantee up-to-date security.

With rare exceptions, every website is comprised of unique custom code and websites are, by design, open and available to the public. This makes them vulnerable to security breeches from hackers.  It is in the post-deployment, or operational, phase of the application life cycle that a website risk management program delivers the most value to an organization.  This operational phase is by far the most important, and generally longest lasting, of any phase of an application’s life. As the most prevalent attack target, production websites are where the majority of an organization’s security resources should be applied. WhiteHat has developed an effective Website Risk Management approach built around securing and protecting all of your websites.

Compliance Alert & Reporting

The current compliancy environment forces organizations to not only attest to being compliant, but actually demonstrate that compliance. As part of the service, WhiteHat will prepare a standard set of reports which will meet or exceed the reporting requirements of SOX, VISA CISP, PCI, HIPPA, Bill 198 and PIPEDA that can improve your client satisfaction, verify your compliance with policies and standards and provide your Executive with confidence in your network security posture.

PCI Audit Preparation Reporting

Most organizations are required to comply with multiple regulations. The critical importance of identifying and protecting sensitive information assets within their environments drives their need to implement effective information security programs. Some examples of leading regulations that organizations that store, process or transmit sensitive data must comply with are the Payment Card Industry Data Security Standard (PCI DSS), Health Insurance Portability and Accountability Act (HIPAA), Gramm-Leach Bliley Security Compliance Act (GLBA) and the Federal Information Security Management Act (FISMA).

Regulatory mandates requiring organizations to protect information continue to have an impact on businesses in many industries, and the need to engage a trusted advisor to help maintain compliance remains critical.

WhiteHat's dedicated team of information security professionals in conjunction with our managed services offerings will work with you to align security and compliance initiatives to support business objectives. WhiteHat has a lengthy history of building information security programs and architectures for organizations of all types and sizes that operate within a wide range of industries. Our consultants utilize an in-depth, flow-based methodology that encompasses discovery, data-flow analysis and diagram creation, gap analysis and full remediation services. By helping organizations align with industry-recognized security best practices, we help ensure that your compliance requirements are met.

Vulnerability Management

Today’s enterprise management and communications - with all of the business benefits  - also bring significant security risks. There are new reports of hackers infiltrating networks and negatively impacting businesses almost every day. Varied systems have vulnerabilities against different types of attack. The attacks can be virus attacks, denial of service attacks, spoofing attacks, or other malicious infiltrations.

WhiteHat can assist you in understanding and correcting network and system security issues with our Network Vulnerability Management service offering. Our service actively determines what security vulnerabilities exist on your network and various systems and determines solutions to fix them. Our vulnerability management service covers network equipment like routers, switches, firewalls, and other hardware, as well as operating systems like Windows NT, Solaris and Linux.

.