Home
Solutions
Services
Support
Shearwater can perform audits on the environment where we examine the current controls in place as well as the policies and procedures governing the area under examination. We use a process that conforms with the AUS standards for auditing and follows the AS/NZS 4360 Risk Standard.
Many organisations are unaware of the wireless access points into their network. Shearwater can perform a wireless audit that will map and identify access points connecting to your network and identify any associated issues.
When working through the steps to certify to AS/NZS ISOIEC 27001 (formerly AS/NZS 7799.2.2003) a Gap analysis will show you where you need to spend the most effort. We have a Lead Auditor on staff who understand the process and the requirements under the standard.
Web Servers and other internet facing servers should be hardened in order to protect them. Firewalls and intrusion detection controls are ineffective if the application or the server hosting the application is configured such that vulnerabilities can easily be exploited. Shearwater examines the server configuration and uses either industry best practice or your hardening information and verifies the configuration meets or
exceeds your expectations.
With the security environment changing on an almost daily basis, testing the effectiveness of controls
in place becomes an important aspect of security management. Shearwater provides a number of
services that will assess current controls and provide recommendations to mitigate any issues found.
We provide flexible services that can be tailored to your specific environment. Shearwater conducts:
Penetration tests or Ethical Hacks are tests designed to identify vulnerabilities in systems and attempt to gain access in a manner similar to that used by hackers. This type of test is often used to test the strength of the organisation’s perimeter and can be used to test incident response capabilities, intrusion detection systems, firewalls, web servers and more.
Our risk assessment methodology follows the Australian Standard 4360 in it’s approach to assessing risk. By following this approach we examine the environment in scope and provide a detailed report on the threats, the risks and recommendations to treat the risks. Where organisations have exisiting methodologies, these can also be utilised.