Base3 provide a variety of Cyber Security related services. Let us take away the complexity and worry of ensuring your systems are secure so that you can focus on your core business.

Vulnerability Assessments

We can undertake ad-hoc, or regular vulnerability scanning of your external or internal systems based on a provided scope. We can utilise our scanning software to find known vulnerabilities as well as help you mitigate security vulnerabilities before they are taken advantage of. Regular vulnerability scanning is commonly part of regulatory requirements, such as PCI DSS. The output of a vulnerability assessment is a findings report, which details the highest rated vulnerabilities found and mitigation advice. We try to confirm the highest risks are not false positives so you can be confident in the findings presented back.

Penetration Testing

Penetration testing takes considerably longer, and takes more scanning and enumeration to find vulnerabilities that may not be picked up by an automated scanning tool. Part of the penetration test not only aims to find vulnerabilities, but also take advantage of them to see what kind of access an attacker can gain.

There are a number of different types of Penetration Testing that can be performed, ranging from no knowledge (black box) to full knowledge (white box) and can include different types of attack, such as Social Engineering and Physical, so your entire business can be tested for its security.

Incident Response

Our Incident Response service helps you prepare for what will inevitably happen, even if you do not know it. We will help your business prepare for an attack, or security incident, so that your response will be swift to get your business running back to how it was. The services range from a review of your current processes, to training at a high level for all members of your business, so everyone knows their responsibilities. We can provide recommendations for training for your IT staff to ensure they have the skills necessary to effectively respond to the Incident. Some regulatory requirements include the need for a robust Incident Response Plan, that has been thoroughly tested. We can help you get there.