All services offered by MWR InfoSecurity are built upon the cornerstone of the three tiered model to assess risks of sensitive information and establishing security policy; The CIA model is the standard for the information security industry and examines:

• Confidentiality — Sensitive information must be available only to a set of pre-defined individuals. Unauthorized transmission and usage of information should be restricted. For example, confidentiality of information ensures that a customer's personal or financial information is not obtained by an unauthorized individual for malicious purposes such as identity theft or credit fraud.
• Integrity — Information should not be altered in ways that render it incomplete or incorrect. Unauthorized users should be restricted from the ability to modify or destroy sensitive information.
• Availability — Information should be accessible to authorized users any time that it is needed. Availability is a warranty that information can be obtained with an agreed-upon frequency and timeliness. This is often measured in terms of percentages and agreed to formally in Service Level Agreements (SLAs) used by network service providers and their enterprise clients.

Penetration Testing

Testing your infrastructure by commissioning a Penetration Test from MWR InfoSecurity enables you to see how your systems could be attacked, breached and compromised. Our reporting supports remedial action as the implementation of all recommendations, fixes and workarounds are fully supported by your dedicated testing team.
More

Application Security Testing

In the last year MWR InfoSecurity has breached 82% of the applications which we tested. We are experienced in testing systems such as online gaming, online payment, document management, WAN linked financial systems, payment portals, web based examination systems. MWR InfoSecurity tests both off the shelf and custom applications, whether they are web or client based.
More

Wi-Fi (Wireless) Security Testing

MWR InfoSecurity has developed a set of testing tools that perform both active and passive attacks on WLANs. The techniques are updated regularly to expand the testing scope to include newest standards and attack vectors.
More

Fasthold Vulnerability Assessment

Fasthold VA service uses multiple scanners to identify vulnerabilities which could be used by attackers to gain access to your systems.  Results are then reviewed by experienced testers, resulting in a low level of false positives.  Reports are delivered through the Fasthold secure portal, providing a clear audit trail.  Mini-guides form an integral part of the reports, enabling you to and contain mini-guides with step by step guidance to resolve issues discovered.
More

Load Testing

Load Testing offers an opportunity to enhance the performance of any server-based applications or on-demand software.
More

Security Management Consultancy

MWR InfoSecurity's information security management implementation framework is designed to integrate with established corporate disciplines, especially the organisation's strategy development and approval process. We deliver a project to set up an information security management programme that:

complies with relevant national/local legislation/regulations.
More

Firewall Testing

Our Firewall Testing helps give the assurance that your firewall is configured to behave precisely as you want it to. More importantly it discovers how secure your current configuration is and offers some robust methods for improvement. We provide the reassurance that it is delivering the level of security you desire.
More

Internal Penetration Testing

Our testing audits the security layers implemented within your private network(s). It also maps and enumerates each component, both functioning and latent. Using mapping and access-level data you can readily enhance your employee access management framework.
More

Physical Testing

During a Physical Security test various methods will be adopted to test the security of the perimeter, physical entry controls, equipment security and many other areas. These will include but are not limited to observation, social engineering, information analysis and physical testing.
More

PCI ASV Service

MWR InfoSecurity are Approved Scanning Vendors, and have assisted many Merchants and Service providers with PCI Projects. We pride ourselves in the level of support we provide to all clients; consultants are available to guide you through the steps towards PCI DSS compliance.
More

PCI QSA Service

MWR InfoSecurity is a Qualified Security Assessor (QSA) and Approved Scanning Vendor (ASV) and can provide a complete range of services to organisations to help them achieve compliance. Our in-depth knowledge of PCI standards combined with the skills of our experienced consultants ensure that clients are assisted at every stage of the process.
More