Security Professional Services

Security professional services

CERBERT core business is based on Professional Services with a focus on Information Technology Security. All our security consultants have in-depth hands on experience in the IT security, in several different areas. We have over 100 (ONE HUNDRED) years of combined experience in this field, with successful delivered projects in large enterprises environments as well in SMB domains.

Our Consulting Business is focused on the following 4 areas:

  • Security Architecture focused projects
  • Security Risk Assessments
  • Technology focused security professional services
  • SIEM (Security Information & Event Management) specific engagements
Area of expertise Some examples of past completed projects by CERBERT Professional Services Team Engagement Details (typical)
Security Architecture & Design – Establish a security architecture framework in a large enterprise organisation using SABSA and/or TOGAF
– Review the current security program and provides recommendations
– Deliver GRC (Governance Risk Compliance) program
– Build a Security Architecture for an Internet POP for a large regional transportation company
– Complete a Conceptual, Logical and Physical Level security architecture for an Internet facing health application
– Define organization short and long term security strategy
Competitive Daily Rates, most work is completed at customer site as this type of engagements does required a strong interaction with several teams and executives from customer
Security Risk Assessments – Logical & Physical Level Threat Risk Assessments (TRA)
– Vulnerability Assessments
– PenTests
– Informal Risk Assessment targeted to a specific application, business component or infrastructure
– Cost vs. Risk analysis for introduction of new security technologies in organizations
Billing is structured on full project upfront, with specific milestones and deliverables agreed with the customer prior to the project starting date. Most of the work is done remotely.
Technology Focused Security Professional Services – Firewall & IPS sensors deployment, tuning, optimisation or troubleshooting
– Web Filtering introduction deployments in large organisations
– SIEM installations and troubleshooting
– Antimalware/Antivirus components deployments
– Network and Security monitoring tools instalation and configuration
Competitive Daily Rates. All work completed at customer site.
Typical engagement is driven by a specific gap in skills, technology, timeframe at customer side. CERBERT security engineers delivers complete set of documentation at the end of the engagement.
SIEM Specific Consulting Engagements – Use Case definition, selections based on specific log source types and tune-up
– Establishing and consolidating Security Incident Management framework around the SIEM products
– Work with customer in creating playbooks, documentation for SIEM execution
– Review and identify gaps in SIEM deployments. Improve SIEM use in customer SOC team and increase ROI of the technology
These types of engagements are extremely challenging as typically the customer starts with a large initial investment (buy the technology based on “out-of-box” selling pitch from SIEM vendors or Managed Service Providers) and ending up with just a glorified SYSLOG/logging repository tool. Ability to create valuable and customised use cases that are truly benefit the customer is limited with an out-of-box deployment. Normally this engagement takes longer time, as our consultants have to work closely with the customer to properly understand and define customer specifics

Leave a Reply

Your email address will not be published. Required fields are marked *