In December 2007, MI5 released to the UK business leaders, including Banks, Financial Institutions, Accountants and Legal Firms etc, a warning of ‘electronic espionage attack’ by a ‘Chinese State and Russian Organisations’. Such attacks are IT related but could also involve interception of telecommunications.

We also acknowledge that you have your own in-house IT security specialists but it is often advisable to have an independent evaluation in the interest of long term security.

S.I.P conduct comprehensive IT security audits, including network infrastructure, systems servers operated, third party access, exchange (email), work station/laptop security, penetration test, as well as other areas as appropriate once we have made a pre-contract evaluation of your IT system. S.I.P’s IT personnel are either ex- GCHQ, NATO, New Scotland Yard Computer Crime Department or other similar body. They are experience in identifying email and IT security weaknesses as well ad any former breaches of security that may have occurred.

Forensics

S.I.P’s Forensics Recovery techniques safeguard the integrity of potential evidence to the highest judicial standards.

Evidence recovered in this form has proved invaluable to a number of our clients. Whether looking for evidence in a criminal prosecution, civil action, or simply determining an employees activities. This is not a new science to our consultants, who have been providing this service to Police Forces for the last thirteen years and have, by necessity worked to the highest, standards. Analysis of systems and the recovery of deleted files can reveal the following type of information:-

• Web sites visited.
• Whether sensitive files have been transferred.
• When files were last accessed.
• Whether any efforts have been made to add, alter, delete or conceal potential evidence.

Practises and methodology have been preferred over this period of time and include:

• On site seizure and preservation of data.
• Analysis and investigations of data.
• Reporting.
• Presentation.
• Advice on the preparation requests for discovery/disclosure.

Intrusion Detection Systems

With an ever-increasing reliance on Internet, intranet and extranet access, there is a rapidly increasing role for Intrusion Detection Technologies in enterprise wide security architecture.

With the rapidly expanding number of potential solution available, S.I.P can provide vendor independent, impartial advice on all aspects of Intrusion Detection Systems (IDS) including:

• Purchase of the correct products.
• Identification of key areas, networks and systems that require protection.
• Sighting of selected products.
• Application configuration.
• Monitoring and Incident Response.

Incident Handling

High Technology Investigations is a skilful art requiring experience, knowledge, resources and subtlety. Unfortunately, many organisations have found themselves the victims of systems or communications tampering, information warfare, sabotage, fraud or other forms of computer misuse.

When incidents like these occur, there can be confusion or conjecture as to why or how it happened and what to do about it.

Breaches of security need a methodical approach with the ability to:

• Understand the extent of an incident.
• Protect the systems, the networks and their ability to continue operating as intended.
• Protect systems and date.
• Understand what happened and advise accordingly.
• Collect accurate information without which you may inadvertently compromise your systems further.
• Assist with investigations to the appropriate legal standard.

Penetration Testing

S.I.P have been undertaking investigation into computer misuse and major fraud for a considerable length of time, some going back fifteen years. We have recourse to the latest technologies and methods in forensic examination and investigation techniques and work to the highest level of proof and evidence. That experience is there to support you and your organisation.

Independent testing of systems has an important part to play in verifying the continued effectiveness of IT security arrangements. The vary nature of this form of active testing needs to be carried out under controlled conditions by competent personnel.

Systems vary considerably, whether as a result of the differences in operating platforms of their configuration, as a consequence testers need to apply procedures with an appropriate degree of rational and common sense and not just rely on a number of automated packages to provide the answers. The reviews S.I.P submits to its clients are accurate, concise and come with a 'jargon free' management summary. Our recommendations are realistic, cost effective and user friendly.

Firewall Installation

S.I.P can provide a vendor independent, impartial advice and solutions on all aspects of Firewalls, including:

Security Policy Development - The firewall policy defines the application, services, systems and users that are allowed and denied access through the firewall. The firewall policy also defines the user authentication methods and protects systems within the internal networks and on DMZ networks.

Installation, Configuration, Testing and Documenting - We will install the firewall and configure the system to enforce the Firewall security Policy. In addition, the configuration will be clearly documented and tested for network communications to ensure compliance with policy.

Administration Training - We will also provide administrators with hands on training in order to perform the day-to-day management and maintenance administration of the firewall. Topics include System Architecture, configuration files, policy developments, log analysis, maintenance duties, maintenance and management Services.

S.I.P can provide both on site and remote firewall managements services. These services are tailored to meet the customer's specific requirements.

Virtual Private Networks

S.I.P can help your organisation safely, easily and costs effectively use the Internet for secure communications between individuals or sites. Using the highest levels of authentication protocols, data integrity protections and encryption algorithms, modern VPN solutions offer new benefits along with cost reductions.

S.I.P expertise in information security solutions enabled us to:

• Develop and implement a comprehensive Virtual Private Network strategy for your organisation both in UNIX and Windows NT environments.
• Analysis and assess local and remote network topology and security requirements.
• Define remote access policies, user access and encryption levels for the VPN.
• Prepare a comprehensive VPN solution and integration with all elements of network topology.

Plus VPN Solutions - Connectivity with security for:

• Branch offices.
• LAN to LAM communications.
• Travelling employees.
• Remote dial-in from any location.
• Outside consultants.
• Full authentication with dial-in or high speed lines.
• Business partners.
• Secure Extranet solutions.

Alert Service for Corporate Clients only

S.I.P can provide a dedicated alert service.

This service has been specifically designed to drastically reduce the burden on system administrators and those tasked with keeping networks secure.

Information is provided up to date specific to your requirements, directly to those in your organisation who need it. Where applicable the information will include:

• Level of risk assessment details of systems affected type of exploit.
• Recommendations on how best to resolve issues within your environment.

Training

Something new in technology occurs everyday. Sometimes it is to our advantage, sometimes not. Through necessity we have, for the past ten years, kept pace with events. If you have difficulty in being made aware of the latest threats and vulnerabilities or have had to attend expensive seminars to hear about then, SIP can help you.

S.I.P have established National Training and Interpol Training in computer and information crime, teaching information security and MSc level.

S.I.P is flexible and able to tailor make and provide courses and seminars to cover the clients IT requirements.