Penetration Testing

Dionach offer a range of Penetration Testing services including:

Network Penetration Test

Identify vulnerabilities exposed through your Internet Gateways to external attacks on your systems.

Web Application Penetration Test

Ensure that your websites, web shops, intranets, extranets and web based applications are secure.

Mobile App Penetration Test

Check your mobile apps and related web services for mobile app specific vulnerabilities.

Internal Penetration Test

Assess risks posed by hackers or malicious employees with access to your internal systems.

Social Engineering

Check resilience of staff and technical controls to social engineering attacks, which include phishing, telephone social engineering and physical intrusion testing.

 

PCI DSS Services

Dionach is a PCI Qualified Security Assessor (QSA) which enables us to provide reliable, practical advice to help your business remain compliant with PCI DSS. Dionach offer a variety of services to help with your compliance.

PCI DSS Scope

Dionach can assist in scoping out areas where cardholder data is stored, processed or transmitted to understand how and if scope can be reduced, and therefore how to attain PCI DSS compliance more quickly.

PCI QSA Consultancy

Dionach’s consultants can provide experienced comprehensive guidance on the best methods and practice for your business. We will provide clear and practical advice for any non-compliant areas to help your business attain PCI DSS compliance.

PCI SAQ Consultancy

As an annual requirement for PCI DSS most businesses taking card payments are required to complete an annual self-assessment questionnaire (SAQ). Dionach can provide accurate advice and assistance to help ease the stress to make sure that your SAQ is well documented, accurate and dependable.

PCI ASV Scanning

A vulnerability assessment simply identifies and reports areas of weakness by means of scanning all resources. The scan will need to be carried out through a PCI approved scanning vendor.

PCI Penetration Test

Dionach have years of experience in manual penetration testing and can ensure that a fully comprehensive penetration test will be carried out for your security. PCI DSS requires that annual network and application penetration tests are completed penetration testers.

 

Cyber Security Incident Response

Dionach provide a number of services around Cyber Security Incident Response, Forensics and Investigations to a number of its clients. Dionach has a highly experienced team of analysts and investigators who, with years of project management experience, can help you to react, respond to and recover from cyber security incidents.

CLAS Consultancy

Dionach provide services to the public sector and supporting organisations as part of our membership of the CESG Listed Advisory Scheme (CLAS). These include production of RMADS, support for risk assessment and management, review of security architecture, and compliance with requirements of the Security Policy Framework (SPF).

 

ISO 27001 Consultancy

Dionach can provide experienced ISO 27001 consultants to assist your internal teams and provide additional short term resource for certification to the information security standard ISO27001. Dionach offer a range of ISO 27001 Auditing services, including:

ISO 27001 Gap Audit

Identify the things that your organisation needs to do to obtain certification to information security standard ISO 27001.

ISO 27001 Internal Audit

Perform regular independent internal audits of your ISMS as required as part of adhering to the ISO 27001 information security standard.

Gambling Commission ISO 27001 Annual Audit

Comply with the Gambling Commission's Security Requirements by performing annual security audits against the Remote and Gambling Software Technical Standards.

 

Information Security Auditing

Dionach offer a range of Information Security Auditing services, including:

Network Security Audit

Assess the security policies, procedures and infrastructure that you have in place to protect your sensitive data and your network against attack.

Application Security Audit

Audit your application software (both web applications and client-server applications) for security issues that would enable unauthorised access to the data that they contain or disruption to the operation of your business.

 

IT Health Check

Undertake a Code of Connection (CoCo) IT Health Check to meet requirements for connection to the Government Connect Secure Extranet (GCSx).

CLAS Consultancy

Dionach provide services to the public sector and supporting organisations as part of our membership of the CESG Listed Advisory Scheme (CLAS). These include production of RMADS, support for risk assessment and management, review of security architecture, and compliance with requirements of the Security Policy Framework (SPF).

Cyber Essentials

Get certified to the UK government's Cyber Essentials scheme.

Information Security Training

Dionach offer a variety of information security training including Secure Web Application Design, ISO 27001 implementation and Firewall Configuration.

Trusted Advisory Service

Dionach's trusted advisory service offers independent specialist security advice for policy, infrastructure or systems.