Smartcards
Secure Networks
Security Audits
MasterCard Audits
PCI DSS
Ethical Hacking
Computer Forensic
Security Concepts
Security Management
Data Protection
PKI
Project Management
Evaluation Lab
Test and Quality Assurance SRC Academy
| Home | |||
| News | White Papers | Customers | |
| CA | Contact | Imprint |
Reaching a defined Security level: the Security Concept
The goal of a Security Concept is the identification of the necessary protection needs of information, systems and processes and the definition of measures to reach this security level. A procedure composed of the following steps has been established:- identification of objects worth protecting and their protection needs
- analysis of the threats to these objects
- qualitative evaluation of occurrence probability and potential amount of damage
- definition of measures to reduce the occurrence probability and amount of damage
- implementation of these measures
- identification of the risk remaining after the implementation
- approval of remaining risk
On the basis of these results, risks can be estimated (risk analysis) in a structured procedure and measures to reduce or eliminate them can be defined.
Development of secure networks
Heterogeneous networks include areas that have a higher need of protection than others. Internal networks need to be protected from attacks from the public network and network servers have to be highly available. We solve these tasks with you, develop a conception and support you with its implementation.Emergency Concepts
The goal of emergency concepts is to enable the upkeep of business operations in case parts of the complete IT-infrastructure fails. We identify the major business processes with you, prioritise them and evaluate their dependence on your IT. Depending on the prioritisation of the processes and the maximal tolerable outage time of the IT, we define measures that guarantee staying under the tolerable outage time in every case.Upkeep by Security Management
To keep up the security level that was reached with the help of the security concept permanently, it is recommended to establish a process for frequent updates of the concept within the framework of a security management system.
Top